CVE-1999-1337

Name of the Vulnerable Software and Affected Versions: Midnight Commander (mc) versions prior to 4.5.11

Description: The issue concerns the storage of sensitive information in a world-readable file. Specifically, the FTP client stores usernames and passwords for visited sites in plaintext in the history file, allowing other local users to access this information and potentially gain privileges.

Recommendations: For versions prior to 4.5.11, update to version 4.5.11 or later to resolve the issue. As a temporary workaround, consider restricting access to the history file to minimize the risk of exploitation.