exploitDog

CVE-1999-1475

Опубликовано: 19 нояб. 1999

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

ProFTPd 1.2 compiled with the mod_sqlpw module records user passwords in the wtmp log file, which allows local users to obtain the passwords and gain privileges by reading wtmp, e.g. via the last command.

Ссылки

http://www.securityfocus.com/archive/1/35483
Patch
Vendor Advisory
http://www.securityfocus.com/bid/812
Patch
Vendor Advisory
http://www.securityfocus.com/archive/1/35483
Patch
Vendor Advisory
http://www.securityfocus.com/bid/812
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:proftpd_project:proftpd:1.2:*:*:*:*:*:*:*

EPSS

Процентиль: 28%

0.001

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-x3q5-jc99-rf4p

github

больше 3 лет назад

ProFTPd 1.2 compiled with the mod_sqlpw module records user passwords in the wtmp log file, which allows local users to obtain the passwords and gain privileges by reading wtmp, e.g. via the last command.

EPSS

Процентиль: 28%

0.001

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other