By using the cd .. command, an attacker can traverse to the root directory, and from there into any directory the FTP server has read access to. By combining this with the get and put commands, arbitrary files can be downloaded from, or uploaded to, the target.
By using the cd .. command, an attacker can traverse to the root directory, and from there into any directory the FTP server has read access to. By combining this with the get and put commands, arbitrary files can be downloaded from, or uploaded to, the target.