Back to search
CVE-2010-2073
Published: Jun 16, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
auth_db_config.py in Pyftpd 0.8.4 contains hard-coded usernames and passwords for the (1) test, (2) user, and (3) roxon accounts, which allows remote attackers to read arbitrary files from the FTP server.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
pyftpd-default-account(59431)
vdb-entry
x_refsource_XF
40839
vdb-entry
x_refsource_BID
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=585776
x_refsource_CONFIRM
[oss-security] 20100613 CVE request - pyftpd default username and password vulnerability
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now