Unrated severityNVD Advisory· Published Nov 19, 1999· Updated Apr 16, 2026

CVE-1999-1475

Description

ProFTPd 1.2 compiled with the mod_sqlpw module records user passwords in the wtmp log file, which allows local users to obtain the passwords and gain privileges by reading wtmp, e.g. via the last command.

Affected products

Proftpd/Proftpd
cpe:2.3:a:proftpd_project:proftpd:1.2:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/archive/1/35483nvdPatchVendor Advisory
www.securityfocus.com/bid/812nvdPatchVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000