Vulnerability Description
SeleniumServer FTP Server 1.0, and possibly earlier, stores user passwords in plaintext in the Servers directory, which allows attackers to obtain passwords by reading the file. NOTE: the provenance of this information is unknown; details are obtained from third party sources.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Biba Software | Seleniumserver Ftp Server | 1.0 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/22928Vendor Advisory
- http://www.osvdb.org/30449
- http://www.vupen.com/english/advisories/2006/4540Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30334
- http://secunia.com/advisories/22928Vendor Advisory
- http://www.osvdb.org/30449
- http://www.vupen.com/english/advisories/2006/4540Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30334
FAQ
What is CVE-2006-5982?
CVE-2006-5982 is a vulnerability with a CVSS score of 10.0 (HIGH). SeleniumServer FTP Server 1.0, and possibly earlier, stores user passwords in plaintext in the Servers directory, which allows attackers to obtain passwords by reading the file. NOTE: the provenance ...
How severe is CVE-2006-5982?
CVE-2006-5982 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-5982?
Check the references section above for vendor advisories and patch information. Affected products include: Biba Software Seleniumserver Ftp Server.