Vulnerabilities > CVE-1999-1475 - Unspecified vulnerability in Proftpd Project Proftpd 1.2
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
ProFTPd 1.2 compiled with the mod_sqlpw module records user passwords in the wtmp log file, which allows local users to obtain the passwords and gain privileges by reading wtmp, e.g. via the last command.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |