Privilege Escalation via mod_sqlpw in ProFTPD

Privilege Escalation via mod_sqlpw in ProFTPD

CVE-2001-0027 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

mod_sqlpw module in ProFTPD does not reset a cached password when a user uses the "user" command to change accounts, which allows authenticated attackers to gain privileges of other users.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.