PT-2001-2284 · Argosoft · Argosoft Ftp Server

Published

2001-07-12

Updated

2008-09-05

CVE-2001-1142

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions ArGoSoft FTP Server version 1.2.2.2

Description The issue concerns the use of weak encryption for user passwords. This weakness allows an attacker with access to the password file to gain privileges.

Recommendations For ArGoSoft FTP Server version 1.2.2.2, consider updating the password storage to use a stronger encryption method to protect user passwords. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2001-1142

Affected Products

Argosoft Ftp Server

PT-2001-2284 · Argosoft · Argosoft Ftp Server

CVE-2001-1142

Related Identifiers

Affected Products

References · 5