CVE-2000-0214
published 2000-02-24CVE-2000-0214: FTP Explorer uses weak encryption for storing the username, password, and profile of FTP sites.
PriorityP413medium4.6CVSS 2.0
AVLACLAuNCPIPAP
EXPLOIT
EPSS
0.86%
53.8th percentile
FTP Explorer uses weak encryption for storing the username, password, and profile of FTP sites.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ftpx | ftp_explorer | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Microsoft Windows XP/2000/NT 4.0 - Shell Long Share Name Buffer Overrun
exploitdb·2004-04-25
CVE-2004-0214 Microsoft Windows XP/2000/NT 4.0 - Shell Long Share Name Buffer Overrun
Microsoft Windows XP/2000/NT 4.0 - Shell Long Share Name Buffer Overrun
---
source: https://www.securityfocus.com/bid/10213/info
Microsoft Windows operating systems have been reported to be prone to a remotely exploitable buffer overrun condition.
This issue is exposed when a client attempts to connect to an SMB share with an overly long name. This may cause explorer.exe or Internet Explorer to crash but could also potentially be leveraged to execute arbitrary code as the client user.
[AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
Exploit-DB
FTPx FTP Explorer 1.0.00.10 - Weak Password Encryption
exploitdb·2000-02-25
CVE-2000-0214 FTPx FTP Explorer 1.0.00.10 - Weak Password Encryption
FTPx FTP Explorer 1.0.00.10 - Weak Password Encryption
---
// source: https://www.securityfocus.com/bid/1003/info
FTP Explorer includes the option to store profiles of visited FTP sites. The user's name and password can also be stored. These stored values are kept in the registry, under the key HKCU\Software\FTP Explorer\Profiles\ProfileName\ . The password is encrypted, but the encryption mechanism is weak and can easily be broken.
Each character in the password is incremented by 9, then incremented by (3(n - 1)), n being the characters position in the password. Therefore, a password of AAA (A=41) would be stored as:
[A+9+3(1-1)] [A+9+3(2-1)] [A+9+3(3-1)], or 4A4D50.
*NOTE* This algorithm does not seem to apply for characters outside the range 0x20 - 0x7F. However, it is still possib
No writeups or analysis indexed.
http://www.securityfocus.com/bid/1003http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.10.10002242035500.30645-100000%40unreal.sekure.orghttp://www.securityfocus.com/bid/1003http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.10.10002242035500.30645-100000%40unreal.sekure.org
2000-02-24
Published