7.5

CVE-2004-1884

Exploit

Ipswitch WS_FTP Server 4.0.2 has a backdoor XXSESS_MGRYY username with a default password, which allows remote attackers to gain access.

Data is provided by the National Vulnerability Database (NVD)
IpswitchWs Ftp Pro Version6.0
IpswitchWs Ftp Pro Version7.5
IpswitchWs Ftp Pro Version8.0_2
IpswitchWs Ftp Pro Version8.0_3
IpswitchWs Ftp Server Version3.0_1
IpswitchWs Ftp Server Version4.01
ProgressWs Ftp Server Version1.0.1
ProgressWs Ftp Server Version1.0.2
ProgressWs Ftp Server Version1.0.3
ProgressWs Ftp Server Version1.0.4
ProgressWs Ftp Server Version1.0.5
ProgressWs Ftp Server Version2.0
ProgressWs Ftp Server Version2.0.1
ProgressWs Ftp Server Version2.0.2
ProgressWs Ftp Server Version2.0.3
ProgressWs Ftp Server Version2.0.4
ProgressWs Ftp Server Version3.0
ProgressWs Ftp Server Version3.1
ProgressWs Ftp Server Version3.1.1
ProgressWs Ftp Server Version3.1.2
ProgressWs Ftp Server Version3.1.3
ProgressWs Ftp Server Version3.4
ProgressWs Ftp Server Version4.0
ProgressWs Ftp Server Version4.0.2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.3% 0.503
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
http://secunia.com/advisories/11206
Patch
Vendor Advisory
Exploit
http://www.securityfocus.com/bid/9953
Vendor Advisory
Exploit