CVE-2005-2727

Home Ftp Server 1.0.7 stores sensitive user information and server information in the same directory as the user's home directory, which allows remote authenticated users to obtain sensitive information by obtaining ftpmembers.lst and ftpsettings.lst.

Published: Aug 30, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-2727
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
ari_pikivirta / home_ftp_server	1.0.7_b45	1.0.7_b45.x

http://marc.info/?l=bugtraq&m=112490496918102&w=2
http://www.autistici.org/fdonato/advisory/HomeFtpServer1.0.7-adv.txt
http://www.securityfocus.com/bid/14653
https://exchange.xforce.ibmcloud.com/vulnerabilities/22002

Vulnerability Database

291,048

CVE-2005-2727