exploitDog

CVE-2006-5982

Опубликовано: 20 нояб. 2006

Источник: nvd

CVSS2: 10

EPSS Низкий

Описание

SeleniumServer FTP Server 1.0, and possibly earlier, stores user passwords in plaintext in the Servers directory, which allows attackers to obtain passwords by reading the file. NOTE: the provenance of this information is unknown; details are obtained from third party sources.

Ссылки

http://secunia.com/advisories/22928
Vendor Advisory
http://www.osvdb.org/30449
http://www.vupen.com/english/advisories/2006/4540
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/30334
http://secunia.com/advisories/22928
Vendor Advisory
http://www.osvdb.org/30449
http://www.vupen.com/english/advisories/2006/4540
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/30334

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:biba_software:seleniumserver_ftp_server:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 62%

0.00432

Низкий

10 Critical

CVSS2

Дефекты

CWE-310

Связанные уязвимости

GHSA-9hhm-m7cj-vc5h

github

почти 4 года назад

SeleniumServer FTP Server 1.0, and possibly earlier, stores user passwords in plaintext in the Servers directory, which allows attackers to obtain passwords by reading the file. NOTE: the provenance of this information is unknown; details are obtained from third party sources.

EPSS

Процентиль: 62%

0.00432

Низкий

10 Critical

CVSS2

Дефекты

CWE-310