CVE-2004-1884
Ipswitch WS_FTP Server 4.0.2 - Backdoor Account with Default Credentials
Title source: llmDescription
Ipswitch WS_FTP Server 4.0.2 has a backdoor XXSESS_MGRYY username with a default password, which allows remote attackers to gain access.
References (4)
Core 4
Core References
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=108006581418116&w=2
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15558
Exploit, Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/11206
Exploit, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/9953
Scores
EPSS
0.0112
EPSS Percentile
78.5%
Details
Status
published
Products (24)
ipswitch/ws_ftp_pro
6.0
ipswitch/ws_ftp_pro
7.5
ipswitch/ws_ftp_pro
8.0_2
ipswitch/ws_ftp_pro
8.0_3
ipswitch/ws_ftp_server
3.0_1
ipswitch/ws_ftp_server
4.01
progress/ws_ftp_server
1.0.1
progress/ws_ftp_server
1.0.2
progress/ws_ftp_server
1.0.3
progress/ws_ftp_server
1.0.4
... and 14 more
Published
Mar 23, 2004
Tracked Since
Feb 18, 2026