Security Advisory

CVE-2017-15272

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-11-15 16:00:00

Last updated 2024-08-05 19:50:16

Assigner mitre

State PUBLISHED

Description

The PSFTPd 10.0.4 Build 729 server stores its configuration inside PSFTPd.dat. This file is a Microsoft Access Database and can be extracted. The application sets the encrypt flag with the password "ITsILLEGAL"; however, this password is not required to extract the data. Cleartext is used for a user password.

← Browse all CVEs View on cve.org ↗