1. Home
  2. CVE Database
  3. CVE-1999-1345
MEDIUM · 4.6

CVE-1999-1345

Auto_FTP.pl script in Auto_FTP 0.2 uses the /tmp/ftp_tmp as a shared directory with insecure permissions, which allows local users to (1) send arbitrary files to the remote server by placing them in t...

Vulnerability Description

Auto_FTP.pl script in Auto_FTP 0.2 uses the /tmp/ftp_tmp as a shared directory with insecure permissions, which allows local users to (1) send arbitrary files to the remote server by placing them in the directory, and (2) view files that are being transferred.

CVSS Score

4.6

MEDIUM

AV:L/AC:L/Au:N/C:P/I:P/A:P
Confidentiality
PARTIAL
Integrity
PARTIAL
Availability
PARTIAL

Affected Products

VendorProductVersions
Auto FtpAuto Ftp0.2

References

FAQ

What is CVE-1999-1345?

CVE-1999-1345 is a vulnerability with a CVSS score of 4.6 (MEDIUM). Auto_FTP.pl script in Auto_FTP 0.2 uses the /tmp/ftp_tmp as a shared directory with insecure permissions, which allows local users to (1) send arbitrary files to the remote server by placing them in t...

How severe is CVE-1999-1345?

CVE-1999-1345 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-1999-1345?

Check the references section above for vendor advisories and patch information. Affected products include: Auto Ftp Auto Ftp.