Security Advisory

CVE-1999-1475

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2001-09-12 04:00:00

Last updated 2024-08-01 17:18:07

Assigner mitre

State PUBLISHED

Description

ProFTPd 1.2 compiled with the mod_sqlpw module records user passwords in the wtmp log file, which allows local users to obtain the passwords and gain privileges by reading wtmp, e.g. via the last command.

← Browse all CVEs View on cve.org ↗