CVE-2002-0264

{"id": "CVE-2002-0264", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2002-05-29T04:00:00.000", "references": [{"url": "http://marc.info/?l=bugtraq&m=101361745222207&w=2", "source": "cve@mitre.org"}, {"url": "http://www.iss.net/security_center/static/8183.php", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/4074", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "PowerFTP Personal FTP Server 2.03 through 2.10 stores sensitive account information in plaintext in the ftpserver.ini file, which allows attackers with access to the file to gain privileges."}, {"lang": "es", "value": "El servidor FTP PowerFTP Personal 2.03 hasta 2.10 almacena importante informaci\u00f3n de cuenta en texto plano en el fichero ftpserver.ini file. Esto permite que atacantes remotos con acceso al fichero obtengan privilegios."}], "lastModified": "2016-10-18T02:17:54.483", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cooolsoft:powerftp:2.03:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "903FAB8A-5EEB-4D29-BC74-104BE5DD5F62"}, {"criteria": "cpe:2.3:a:cooolsoft:powerftp:2.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D8DCE78C-8579-4111-BADF-ACD04FB04EA0"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}