PT-2003-2035 · Oracle · Solaris

Published

2003-02-28

·

Updated

2018-10-30

·

CVE-2003-1078

CVSS v2.0

7.5

High

VectorAV:N/AC:L/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions Solaris versions 2.6, 7, 8
Description The FTP client in Solaris displays the user password on the screen during login when the debug flag is enabled.
Recommendations For Solaris versions 2.6, 7, 8, avoid using the debug (-d) flag when logging in via FTP to prevent password exposure.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2003-1078

Affected Products

Solaris