Vulnerabilities > CVE-1999-1090 - Unspecified vulnerability in Ncsa Telnet

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

ncsa

NVD

Published: 1991-09-10

Updated: 2017-10-10

Summary

The default configuration of NCSA Telnet package for Macintosh and PC enables FTP, even though it does not include an "ftp=yes" line, which allows remote attackers to read and modify arbitrary files.

Vulnerable Configurations

Part	Description	Count
Application	Ncsa Ncsa Telnet *	1

References

http://www.cert.org/advisories/CA-1991-15.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/1844