PT-2005-3489 · Hummingbird · Hummingbird Ftp For Connectivity

Publicado

2005-08-17

Atualizado

2017-07-11

CVE-2005-2599

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Hummingbird FTP for Connectivity version 10.0

Description The issue allows attackers to gain privileges due to the use of weak encryption, specifically trivial encoding, to store the user's password in the FTP profile.

Recommendations For Hummingbird FTP for Connectivity version 10.0, consider changing the password storage mechanism to a more secure encryption method to prevent attackers from gaining privileges.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2005-2599

Produtos afetados

Hummingbird Ftp For Connectivity

PT-2005-3489 · Hummingbird · Hummingbird Ftp For Connectivity

CVE-2005-2599

Identificadores relacionados

Produtos afetados

Referências · 6