CVE-2005-4066

Severity CVSS v4.0:
Pending analysis
Type:
CWE-310 Cryptographic Issues
Publication date:
07/12/2005
Last modified:
03/04/2025

Description

Total Commander 6.53 uses weak encryption to store FTP usernames and passwords in WCX_FTP.INI, which allows local users to decrypt the passwords and gain access to FTP servers, as possibly demonstrated by the W32.Gudeb worm.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:christian_ghisler:total_commander:6.53:*:*:*:*:*:*:*