Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2005-4066
HistoryDec 07, 2005 - 11:03 a.m.

CVE-2005-4066

2005-12-0711:03:00
CWE-310
[email protected]
web.nvd.nist.gov
1

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

AI Score

6.5

Confidence

Low

EPSS

0

Percentile

5.1%

JSON

Total Commander 6.53 uses weak encryption to store FTP usernames and passwords in WCX_FTP.INI, which allows local users to decrypt the passwords and gain access to FTP servers, as possibly demonstrated by the W32.Gudeb worm.

Affected configurations

Nvd
Node
christian_ghislertotal_commanderMatch6.53
VendorProductVersionCPE
christian_ghislertotal_commander6.53cpe:2.3:a:christian_ghisler:total_commander:6.53:*:*:*:*:*:*:*

Related

cvelist 1
cve 1
cvelist
cvelist
CVE-2005-4066
2005-12-07 11:00:00
cve
cve
CVE-2005-4066
2005-12-07 11:03:00

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

AI Score

6.5

Confidence

Low

EPSS

0

Percentile

5.1%

JSON
Related for NVD:CVE-2005-4066
cvelist1cve1