Vulnerability Description
ArGoSoft FTP Server 1.2.2.2 uses weak encryption for user passwords, which allows an attacker with access to the password file to gain privileges.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Argosoft | Ftp Server | 1.2.2.2 |
References
- http://www.iss.net/security_center/static/6848.phpVendor Advisory
- http://www.securityfocus.com/archive/1/196968Vendor Advisory
- http://www.securityfocus.com/bid/3029ExploitVendor Advisory
- http://www.iss.net/security_center/static/6848.phpVendor Advisory
- http://www.securityfocus.com/archive/1/196968Vendor Advisory
- http://www.securityfocus.com/bid/3029ExploitVendor Advisory
FAQ
What is CVE-2001-1142?
CVE-2001-1142 is a vulnerability with a CVSS score of 5.0 (MEDIUM). ArGoSoft FTP Server 1.2.2.2 uses weak encryption for user passwords, which allows an attacker with access to the password file to gain privileges.
How severe is CVE-2001-1142?
CVE-2001-1142 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-1142?
Check the references section above for vendor advisories and patch information. Affected products include: Argosoft Ftp Server.