ID CVE-1999-0200
Summary Windows NT FTP server (WFTP) with the guest account enabled without a password allows an attacker to log into the FTP server using any username and password.
References
Vulnerable Configurations
CVSS
Base: 10.0 (as of 01-01-2004 - 00:00)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
nessus via4
NASL family FTP
NASL id WFTP.NASL
description The remote FTP server accepts any user/password combination. This can allow remote attackers to access the FTP account, which can lead to information disclosure and uploads of arbitrary files on the remote host.
last seen 2019-02-21
modified 2018-08-15
plugin id 10305
published 1999-06-22
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=10305
title WFTP Unpassworded Guest Account
refmap via4
mskb Q137853
Last major update 20-10-2005 - 00:00
Published 01-01-1999 - 00:00
Back to Top