Plaintext Storage of Credentials in WinFTP Server 1.6

Plaintext Storage of Credentials in WinFTP Server 1.6

CVE-2004-2400 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

WinFTP Server 1.6 stores username and password credentials in plaintext in the data\user.wfd file, which allows local users to gain access to the credentials.

Learn more about our Cis Benchmark Audit For Server Software.