CVE-2001-0768

high

Description

GuildFTPd 0.9.7 stores user names and passwords in plaintext in the default.usr file, which allows local users to gain privileges as other FTP users by reading the file.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/6611

http://www.securityfocus.com/bid/2792

http://archives.neohapsis.com/archives/bugtraq/2001-05/0250.html

Details

Source: Mitre, NVD

Published: 2001-10-18

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00066

Detections

Analytics