A vulnerability has been reported in the Crob FTP server, which occurs due to a lack of validation of input from the user. By issuing a specially crafted request, a malevolent user may be able to gain access to files outside of the ftp root directory.
You can read all directories on the system with the following command:
Crob FTP Server Traversal Arbitrary Directory Listing
Crob FTP contains a flaw that may allow a malicious user to view arbitrary files. The issue is triggered when directory traversal characters are used to escape the server root. It is possible that the flaw may allow arbitrary reading of files resulting in a loss of confidentiality.
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.