CVE-2001-0264 Information

Description

Gene6 G6 FTP Server 2.0 (aka BPFTP Server 2.10) allows remote attackers to obtain NETBIOS credentials by requesting information on a file that is in a network share which causes the server to send the credentials to the host that owns the share and allows the attacker to sniff the connection.

Reference

http://www.atstake.com/research/advisories/2001/a040301-1.txt http://www.securityfocus.com/bid/2534