The host is installed with ALFTP before 5.31 and is prone to untrusted search path vulnerability. A flaw is present in the application, which fails to load executable files properly. Successful exploitation could allow local users to gain privileges of via a Trojan horse executable file.