Lucene search

MitreCVE-2001-0103

HistoryFeb 12, 2001 - 5:00 a.m.

CVE-2001-0103

2001-02-1205:00:00

CWE-310

mitre

web.nvd.nist.gov

weak encryption

coffeecup direct

free ftp clients

ftpservers.ini file

nvd

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

Low

EPSS

Percentile

15.7%

JSON

CoffeeCup Direct and Free FTP clients uses weak encryption to store passwords in the FTPServers.ini file, which could allow attackers to easily decrypt the passwords.

Affected configurations

Nvd

Node

coffeecup_softwarecoffeecup_direct_ftpMatch1.0

coffeecup_softwarecoffeecup_free_ftpMatch1.0

VendorProductVersionCPE
coffeecup_softwarecoffeecup_direct_ftp1.0cpe:2.3:a:coffeecup_software:coffeecup_direct_ftp:1.0:*:*:*:*:*:*:*
coffeecup_softwarecoffeecup_free_ftp1.0cpe:2.3:a:coffeecup_software:coffeecup_free_ftp:1.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
coffeecup_software	coffeecup_direct_ftp	1.0	cpe:2.3:a:coffeecup_software:coffeecup_direct_ftp:1.0:::::::*
coffeecup_software	coffeecup_free_ftp	1.0	cpe:2.3:a:coffeecup_software:coffeecup_free_ftp:1.0:::::::*

References

www.securityfocus.com/bid/2107

exchange.xforce.ibmcloud.com/vulnerabilities/5744

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

Low

EPSS

Percentile

15.7%

JSON

Related for CVE-2001-0103