CVE-2002-2417
Severity:
Pending analysis
Type:
CWE-287
Authentication Issues
Publication date:
31/12/2002
Last modified:
05/09/2008
Description
acFTP 1.4 does not properly handle when an invalid password is provided by the user during authentication, which allows remote attackers to hide or misrepresent certain activity from log files and possibly gain privileges.
Impact
Base Score 2.0
10.00
Severity 2.0
HIGH
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:acftp:acftp:1.4:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page