• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Network-Client FTP Now Local Password Disclosure Vulnerability

FTP Now is reported prone to a vulnerability that can allow an attacker to disclose FTP passwords.

A local attacker can gain access to a file, which contains the credentials in plain text format.

The attacker may then use these credentials to access remote FTP servers and carry out other attacks.

FTP Now 2.6.14 is reported prone, however, it is possible that other versions are affected as well.