exploitDog

CVE-2005-1094

Опубликовано: 08 апр. 2005

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

FTP Now 2.6.14 stores usernames and passwords in plaintext in sites.xml, which is world-readable, which allows local users to gain privileges.

Ссылки

http://secunia.com/advisories/14889
Vendor Advisory
http://securitytracker.com/id?1013657
Vendor Advisory
http://www.osvdb.org/15296
https://exchange.xforce.ibmcloud.com/vulnerabilities/20025
http://secunia.com/advisories/14889
Vendor Advisory
http://securitytracker.com/id?1013657
Vendor Advisory
http://www.osvdb.org/15296
https://exchange.xforce.ibmcloud.com/vulnerabilities/20025

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:network-client.com:ftp_now:2.6.14:*:*:*:*:*:*:*

EPSS

Процентиль: 36%

0.0015

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-mg33-m6q5-qp9w

github

почти 4 года назад

FTP Now 2.6.14 stores usernames and passwords in plaintext in sites.xml, which is world-readable, which allows local users to gain privileges.

EPSS

Процентиль: 36%

0.0015

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other