Unrated severityNVD Advisory· Published Dec 31, 2002· Updated Apr 16, 2026

CVE-2002-2417

Description

acFTP 1.4 does not properly handle when an invalid password is provided by the user during authentication, which allows remote attackers to hide or misrepresent certain activity from log files and possibly gain privileges.

Affected products

Acftp/Acftp
cpe:2.3:a:acftp:acftp:1.4:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/6235nvdExploit
archives.neohapsis.com/archives/vulnwatch/2002-q4/0088.htmlnvd
securityreason.com/securityalert/3334nvd
www.iss.net/security_center/static/10681.phpnvd
www.securityfocus.com/archive/1/300929nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.005
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000