CVE-1999-1298

HIGH

—CVSS v3

7.5CVSS v2

0.53% EPSS (exploit probability)

—CWE

Description

Sysinstall in FreeBSD 2.2.1 and earlier, when configuring anonymous FTP, creates the ftp user without a password and with /bin/date as the shell, which could allow attackers to gain access to certain system resources.

Affected routers (0)

No routers currently mapped to this CVE in our database.

External references

NIST NVD
MITRE CVE