Vulnerabilities > CVE-2004-2400 - Unspecified vulnerability in Winftp Server Winftp Server 1.6
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
WinFTP Server 1.6 stores username and password credentials in plaintext in the data\user.wfd file, which allows local users to gain access to the credentials.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://secunia.com/advisories/13304
- http://secunia.com/advisories/13304
- http://securitytracker.com/id?1012321
- http://securitytracker.com/id?1012321
- http://www.osvdb.org/12122
- http://www.osvdb.org/12122
- http://www.securityfocus.com/bid/11749
- http://www.securityfocus.com/bid/11749
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18247
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18247