Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
backup-manager-upload in Backup Manager before 0.6.3 provides the FTP server hostname, username, and password as plaintext command line arguments during FTP uploads, which allows local users to obtain sensitive information by listing the process and its arguments, a different vulnerability than CVE-2007-2766.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Backup Manager FTP服务器信息泄露漏洞
Vulnerability Description
Backup Manager是GNU/Linux平台上的命令行备份工具。 Backup Manager在处理备份文件的上传时存在漏洞,本地攻击者可能利用此漏洞获取备份FTP服务器的用户名和口令。 Backup Manager在向FTP服务器上传备份期间可能会泄露FTP口令,能够Shell访问计算机的用户只需运行以下命令: ps wax | grep backup-manager 就可以得到FTP用户名、主机名和口令,输出类似于: 3796 pts/1 SN+ 0:00 /bin/bash /usr/sbi
CVSS Information
N/A
Vulnerability Type
N/A