← CVECheck
HomeVulnerabilities

CVE-1999-1475 — MEDIUM severity vulnerability (ProFTPd 1.2 compiled with the mod_sqlpw module records user)

ProFTPd 1.2 compiled with the mod_sqlpw module records user passwords in the wtmp log file, which allows local users to obtain the passwords and gain privileges by reading wtmp, e.g. via the last command.

CVE IDCVE-1999-1475
SeverityMEDIUM
CVSS score4.6
CVSS vectorAV:L/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published1999-11-19
Last modified2026-04-16
DescriptionProFTPd 1.2 compiled with the mod_sqlpw module records user passwords in the wtmp log file, which allows local users to obtain the passwords and gain privileges by reading wtmp, e.g. via the last command.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →