BlackMoon FTP Server blackmoon.mdb Plaintext Password Disclosure
Medium Nessus Plugin ID 11649
SynopsisThe remote FTP server is affected by a password disclosure vulnerability.
DescriptionBlackMoon FTP server is installed on the remote host. FTP usernames and passwords are stored on the server in plaintext in a filed called 'blackmoon.mdb.' Any user with an account on this host may read the credentials stored in this file, and use them to connect to this FTP server.
SolutionUpgrade to the latest version of BlackMoon FTP.