Ipswitch : Security Vulnerabilities, CVEs, (Gain Privilege)
Ipswitch WS_FTP Server Manager before 6.1.1, and possibly other Ipswitch products, allows remote attackers to bypass authentication and read logs via a logLogout action to FTPLogServer/login.asp followed by a request to FTPLogServer/LogViewer.asp with the localhostnull account name.
Max CVSS
5.0
EPSS Score
0.80%
Published
2008-12-19
Updated
2018-10-11
1 vulnerabilities found