Inappropriate Permissions in Anonymous FTP Account: Critical Data Vulnerability

Inappropriate Permissions in Anonymous FTP Account: Critical Data Vulnerability

CVE-1999-0527 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

The permissions for system-critical data in an anonymous FTP account are inappropriate. For example, the root directory is writeable by world, a real password file is obtainable, or executable commands such as "ls" can be overwritten.

Learn more about our Web Application Penetration Testing UK.