Plaintext Storage of User Credentials in GuildFTPd 0.9.7

Plaintext Storage of User Credentials in GuildFTPd 0.9.7

CVE-2001-0768 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

GuildFTPd 0.9.7 stores user names and passwords in plaintext in the default.usr file, which allows local users to gain privileges as other FTP users by reading the file.

Learn more about our User Device Pen Test.