Plaintext Password Storage Vulnerability in Maxum Rumpus FTP Server

Plaintext Password Storage Vulnerability in Maxum Rumpus FTP Server

CVE-2001-0644 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Maxum Rumpus FTP Server 1.3.3 and 2.0.3 dev 3 stores passwords in plaintext in the "Rumpus User Database" file in the prefs folder, which could allow attackers to gain privileges on the server.

Learn more about our Cis Benchmark Audit For Server Software.