4.6
CVE-2004-1948
- EPSS 0.08%
- Veröffentlicht 20.04.2004 04:00:00
- Zuletzt bearbeitet 16.04.2026 00:27:16
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginNcFTP client 3.1.6 and 3.1.7, when the username and password are included in an FTP URL that is provided on the command line, allows local users to obtain sensitive information via "ps aux," which displays the URL in the process list.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ncftp Software ≫ Ncftp Version3.0.0
Ncftp Software ≫ Ncftp Version3.0.1
Ncftp Software ≫ Ncftp Version3.0.2
Ncftp Software ≫ Ncftp Version3.0.3
Ncftp Software ≫ Ncftp Version3.0.4
Ncftp Software ≫ Ncftp Version3.1.0
Ncftp Software ≫ Ncftp Version3.1.1
Ncftp Software ≫ Ncftp Version3.1.2
Ncftp Software ≫ Ncftp Version3.1.3
Ncftp Software ≫ Ncftp Version3.1.4
Ncftp Software ≫ Ncftp Version3.1.5
Ncftp Software ≫ Ncftp Version3.1.6
Ncftp Software ≫ Ncftp Version3.1.7
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.08% | 0.199 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.6 | 3.9 | 6.4 |
AV:L/AC:L/Au:N/C:P/I:P/A:P
|