CVE-1999-1090 - Expurgatory Texts

Description

The default configuration of NCSA Telnet package for Macintosh and PC enables FTP even though it does not include an \ftp=yes\ line which allows remote attackers to read and modify arbitrary files.

Reference

http://www.cert.org/advisories/CA-1991-15.html https://exchange.xforce.ibmcloud.com/vulnerabilities/1844