← CVECheck
HomeVulnerabilities

CVE-1999-1337 — MEDIUM severity vulnerability (FTP client in Midnight Commander (mc) before 4.5.11 stores u)

FTP client in Midnight Commander (mc) before 4.5.11 stores usernames and passwords for visited sites in plaintext in the world-readable history file, which allows other local users to gain privileges.

CVE IDCVE-1999-1337
SeverityMEDIUM
CVSS score4.6
CVSS vectorAV:L/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published1999-08-01
Last modified2026-04-16
DescriptionFTP client in Midnight Commander (mc) before 4.5.11 stores usernames and passwords for visited sites in plaintext in the world-readable history file, which allows other local users to gain privileges.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →