AI Score
Confidence
Low
EPSS
Percentile
83.8%
NetWin SurgeFTP 2.0f and earlier encrypts passwords using weak hashing, a fixed salt value and modulo 40 calculations, which allows remote attackers to conduct brute force password guessing attacks against the administrator account on port 7021.
online.securityfocus.com/archive/1/201951
www.iss.net/security_center/static/6961.php
www.securityfocus.com/bid/3157