• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Meteor FTP Server Username Information Disclosure Vulnerability

It has been reported that Meteor FTP Server is prone to an information disclosure weakness.

The problem exists in the way the FTP server handles the authentication procedure. An attacker may exploit this weakness to enumerate valid usernames.

It should be noted that although this weakness was reported to affect Meteor FTP server version 1.5, previous versions might also be affected.