CVE-2004-1428

N/A Unknown

Published: December 31, 2004 Modified: April 16, 2026

Description

ArGoSoft FTP before 1.4.2.1 generates an error message if the user name does not exist instead of prompting for a password, which allows remote attackers to determine valid usernames.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://marc.info/?l=bugtraq&m=110451582011666&w=2

Source: cve@mitre.org

Third Party Advisory

http://secunia.com/advisories/13063

Source: cve@mitre.org

Broken Link

http://securitytracker.com/id?1012744

Source: cve@mitre.org

Broken Link Third Party Advisory VDB Entry

http://www.argosoft.com/ftpserver/changelist.aspx

Source: cve@mitre.org

Broken Link

http://www.lovebug.org/argosoft_advisory.txt

Source: cve@mitre.org

Broken Link URL Repurposed

http://www.osvdb.org/11335

Source: cve@mitre.org

Broken Link

http://www.securityfocus.com/bid/12139

Source: cve@mitre.org

Broken Link Third Party Advisory VDB Entry

https://exchange.xforce.ibmcloud.com/vulnerabilities/18721

Source: cve@mitre.org

Third Party Advisory VDB Entry

http://marc.info/?l=bugtraq&m=110451582011666&w=2