Total Commander 6.53 uses weak encryption to store FTP usernames and passwords in WCX_FTP.INI, which allows local users to decrypt the passwords and gain access to FTP servers, as possibly demonstrated by the W32.Gudeb worm.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
christian ghisler total commander 6.53 |