High severity7.5NVD Advisory· Published Jun 16, 2010· Updated Apr 29, 2026
CVE-2010-2073
CVE-2010-2073
Description
auth_db_config.py in Pyftpd 0.8.4 contains hard-coded usernames and passwords for the (1) test, (2) user, and (3) roxon accounts, which allows remote attackers to read arbitrary files from the FTP server.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- bugs.debian.org/cgi-bin/bugreport.cginvdMailing ListPatch
- www.securityfocus.com/bid/40839nvdBroken LinkThird Party AdvisoryVDB Entry
- exchange.xforce.ibmcloud.com/vulnerabilities/59431nvdThird Party AdvisoryVDB Entry
- www.openwall.com/lists/oss-security/2010/06/13/2nvdMailing List
News mentions
0No linked articles in our index yet.