Windows : CesarFTP stores passwords in cleartext

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.11640

Category: Windows

Title: CesarFTP stores passwords in cleartext

Summary: NOSUMMARY

Description: Description:

The remote host has the program CesarFTP.exe installed.

There is a design issue in the program which makes it store
the username and password of the FTP server in cleartext in
the file 'settings.ini'.

Any user with an account on this host may read this file and
use the password to connect to this FTP server.

Solution : None
Risk : Low

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2003-0329
Bugtraq: 20030520 Plaintext Password in Settings.ini of CesarFTP (Google Search)
http://marc.info/?l=bugtraq&m=105344578100315&w=2
http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0074.html

Copyright This script is Copyright (C) 2003 Tenable Network Security

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.11640
Category:	Windows
Title:	CesarFTP stores passwords in cleartext
Summary:	NOSUMMARY
Description:	Description: The remote host has the program CesarFTP.exe installed. There is a design issue in the program which makes it store the username and password of the FTP server in cleartext in the file 'settings.ini'. Any user with an account on this host may read this file and use the password to connect to this FTP server. Solution : None Risk : Low
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2003-0329 Bugtraq: 20030520 Plaintext Password in Settings.ini of CesarFTP (Google Search) http://marc.info/?l=bugtraq&m=105344578100315&w=2 http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0074.html
Copyright	This script is Copyright (C) 2003 Tenable Network Security