Page 3 of 11 results (0.002 seconds)
CVSS: 4.6EPSS: 0%CPEs: 12EXPL: 2
CVE-2001-1354 – NetWin DMail 2.x / SurgeFTP 1.0/2.0 - Weak Password Encryption
https://notcve.org/view.php?id=CVE-2001-1354
NetWin Authentication module (NWAuth) 2.0 and 3.0b, as implemented in SurgeFTP, DMail, and possibly other packages, uses weak password hashing, which could allow local users to decrypt passwords or use a different password that has the same hash value as the correct password. • https://www.exploit-db.com/exploits/21020 http://online.securityfocus.com/archive/1/198293 http://www.securityfocus.com/bid/3075 https://exchange.xforce.ibmcloud.com/vulnerabilities/6866 •