Vulnerability CVE-1999-1475

Vulnerability Name:

CVE-1999-1475 (CCN-8332)

Assigned:

1999-11-19

Published:

1999-11-19

Updated:

2008-09-05

Summary:

ProFTPd 1.2 compiled with the mod_sqlpw module records user passwords in the wtmp log file, which allows local users to obtain the passwords and gain privileges by reading wtmp, e.g. via the last command.

CVSS v3 Severity:

5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

4.6 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

4.6 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-Other

Vulnerability Consequences:

Obtain Information

References:

Source: CCN
Type: BugTraq Mailing List, Fri, 19 Nov 1999 17:19:13 +0000
ProFTPd - mod_sqlpw.c

Source: MITRE
Type: CNA
CVE-1999-1475

Source: CCN
Type: OSVDB ID: 10173
ProFTPD mod_sqlpw wtmp Authentication Credential Disclosure

Source: BUGTRAQ
Type: Patch, Vendor Advisory
19991119 ProFTPd - mod_sqlpw.c

Source: BID
Type: Patch, Vendor Advisory
812

Source: CCN
Type: BID-812
ProFTPD mod_sqlpw Vulnerability

Source: XF
Type: UNKNOWN
proftpd-modsqlpw-insecure-passwords(8332)

Vulnerable Configuration:

Configuration 1:

cpe:/a:proftpd_project:proftpd:1.2:*:*:*:*:*:*:*

Denotes that component is vulnerable

BACK