CVE-2021-41637
- Reference to the description:
- Description:
- Weak access control permissions in MELAG FTP Server 2.2.0.4 allow the "Everyone" group to read the local FTP configuration file, which includes among other information the unencrypted passwords of all FTP users.
- Last updated date:
- 07/01/2022
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 07/01/2022
- Reference url to background
https://www.securesystems.de/blog/advisory-and-exploitation-the-melag-ftp-server/