Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-1345

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-1999-1345
Last Modified 05 Sep 2008 04:19:18
Published 05 Oct 1999 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-1999-1345

Summary

Auto_FTP.pl script in Auto_FTP 0.2 uses the /tmp/ftp_tmp as a shared directory with insecure permissions, which allows local users to (1) send arbitrary files to the remote server by placing them in the directory, and (2) view files that are being transferred.

Vulnerable Systems

Application

  • Auto Ftp 0.2


References

BUGTRAQ - 19991005 Auto_FTP v0.02 Advisory


Last Updated: 27 May 2016 10:35:23