VULHUB ™

It is reported that Win FTP Server stores user account information in a plaintext file on the server filesystem. As a result, FTP user credentials could be exposed to other local users who have permissions to access this file. Malicious users that gain access to FTP user credentials may be able to gain access to potentially sensitive files served by the application. Version 1.6 of the application is reportedly affected by this weakness. Other versions are also likely affected.

It is reported that Win FTP Server stores user account information in a plaintext file on the server filesystem. As a result, FTP user credentials could be exposed to other local users who have permissions to access this file. Malicious users that gain access to FTP user credentials may be able to gain access to potentially sensitive files served by the application. Version 1.6 of the application is reportedly affected by this weakness. Other versions are also likely affected.