VYPR
Unrated severityNVD Advisory· Published Aug 1, 1999· Updated Jun 16, 2026

CVE-1999-1337

CVE-1999-1337

Description

FTP client in Midnight Commander (mc) before 4.5.11 stores usernames and passwords for visited sites in plaintext in the world-readable history file, which allows other local users to gain privileges.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:midnight_commander:midnight_commander:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:midnight_commander:midnight_commander:*:*:*:*:*:*:*:*range: <=4.5.11
    • (no CPE)range: <4.5.11

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.