Lucene search

[email protected]CVE-2004-1884

HistoryMar 23, 2004 - 5:00 a.m.

CVE-2004-1884

2004-03-2305:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

ipswitch

ws_ftp server

vulnerability

backdoor

remote access

cve-2004-1884

nvd

7.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.013 Low

EPSS

Percentile

85.5%

JSON

Ipswitch WS_FTP Server 4.0.2 has a backdoor XXSESS_MGRYY username with a default password, which allows remote attackers to gain access.

CPENameOperatorVersion
ipswitch:ws_ftp_serveripswitch ws ftp servereq4.01
ipswitch:ws_ftp_serveripswitch ws ftp servereq3.0_1
ipswitch:ws_ftp_proipswitch ws ftp proeq6.0
ipswitch:ws_ftp_proipswitch ws ftp proeq8.0_3
ipswitch:ws_ftp_proipswitch ws ftp proeq7.5
ipswitch:ws_ftp_proipswitch ws ftp proeq8.0_2
progress:ws_ftp_serverprogress ws ftp servereq1.0.1
progress:ws_ftp_serverprogress ws ftp servereq1.0.2
progress:ws_ftp_serverprogress ws ftp servereq1.0.3
progress:ws_ftp_serverprogress ws ftp servereq1.0.4

CPE	Name	Operator	Version
ipswitch:ws_ftp_server	ipswitch ws ftp server	eq	4.01
ipswitch:ws_ftp_server	ipswitch ws ftp server	eq	3.0_1
ipswitch:ws_ftp_pro	ipswitch ws ftp pro	eq	6.0
ipswitch:ws_ftp_pro	ipswitch ws ftp pro	eq	8.0_3
ipswitch:ws_ftp_pro	ipswitch ws ftp pro	eq	7.5
ipswitch:ws_ftp_pro	ipswitch ws ftp pro	eq	8.0_2
progress:ws_ftp_server	progress ws ftp server	eq	1.0.1
progress:ws_ftp_server	progress ws ftp server	eq	1.0.2
progress:ws_ftp_server	progress ws ftp server	eq	1.0.3
progress:ws_ftp_server	progress ws ftp server	eq	1.0.4

Rows per page:

1-10 of 241

References

marc.info/?l=bugtraq&m=108006581418116&w=2

secunia.com/advisories/11206

www.securityfocus.com/bid/9953

exchange.xforce.ibmcloud.com/vulnerabilities/15558

7.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.013 Low

EPSS

Percentile

85.5%

JSON

Related for CVE-2004-1884

cvelist1 nessus1 openvas1