Vulnerabilities > CVE-2002-1939 - Unspecified vulnerability in Flashfxp 1.4

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

local

low complexity

flashfxp

NVD

Published: 2002-12-31

Updated: 2008-09-05

Summary

FlashFXP 1.4 prints FTP passwords in plaintext when there are transfers in the queue, which allows attackers to obtain FTP passwords of other users by editing the queue properties.

Vulnerable Configurations

Part	Description	Count
Application	Flashfxp Flashfxp Flashfxp 1.4	1

References

http://online.securityfocus.com/archive/1/296658
http://www.iss.net/security_center/static/10445.php
http://www.securityfocus.com/bid/6032