CVE-1999-1344

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Oct 5, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-1344 is a vulnerability affecting the Auto_FTP 0.2 software, which involves the Auto_FTP.pl script. The issue resides in the handling of authentication data, as usernames and passwords are stored in plaintext within the auto_ftp.conf configuration file. This configuration file is easily accessible, posing a significant risk for unauthorized access and data theft. Attackers can exploit this vulnerability by gaining access to the file and reading the sensitive information it contains. Users are advised to update their Auto_FTP software or employ alternative, more secure methods for managing FTP authentication.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlXWZ
https://www.cve.org/CVERecord?id=CVE-1999-1344
https://nvd.nist.gov/vuln/detail/CVE-1999-1344

Back to Vulnerability Database

CVE-1999-1344

CVSS 2.0 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations