Vulnerability Database

291,049

Total vulnerabilities in the database

CVE-1999-1345

Auto_FTP.pl script in Auto_FTP 0.2 uses the /tmp/ftp_tmp as a shared directory with insecure permissions, which allows local users to (1) send arbitrary files to the remote server by placing them in the directory, and (2) view files that are being transferred.

  • Published: Oct 5, 1999
  • Updated: Apr 13, 2023
  • CVE: CVE-1999-1345
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.6
  • AV:L/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
auto_ftp / auto_ftp 0.2 0.2.x