MidnightBSD

Advisories for open-ftpd

CVE-2010-2620 HIGH

Open&Compact FTP Server (Open-FTPD) 1.2 and earlier allows remote attackers to bypass authentication by sending (1) LIST, (2) RETR, (3) STOR, or other commands without performing the required login steps first.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
open-ftpd open-ftpd *
open-ftpd open-ftpd 1.0