CVE-1999-1337

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Published Aug 1, 1999
Updated: Nov 20, 2024

Summary

CVE-1999-1337 is a vulnerability affecting the FTP client in Midnight Commander (mc) prior to version 4.5.11. This issue permits local users to gain privileged access by reading the plaintext usernames and passwords stored in the world-readable history file for visited FTP sites. This vulnerability could lead to unauthorized access to system resources and potential data breaches. It is important for users to upgrade their Midnight Commander software to a patched version as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share