PT-2001-1493 · Gene6 · Gene6 G6 Ftp Server+1

Published

2001-05-24

Updated

2008-09-05

CVE-2001-0264

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Gene6 G6 FTP Server version 2.0 (aka BPFTP Server 2.10)

Description The issue allows remote attackers to obtain NETBIOS credentials by requesting information on a file in a network share. This causes the server to send the credentials to the host that owns the share, allowing the attacker to sniff the connection.

Recommendations For Gene6 G6 FTP Server version 2.0 (aka BPFTP Server 2.10), at the moment, there is no information about a newer version that contains a fix for this issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2001-0264

Affected Products

Bpftp Server

Gene6 G6 Ftp Server

PT-2001-1493 · Gene6 · Gene6 G6 Ftp Server+1

CVE-2001-0264

Related Identifiers

Affected Products

References · 4