CVE-1999-1078 is a vulnerability found in WS_FTP Pro version 6.0, a widely used FTP client developed by Ipswitch. The vulnerability arises from the use of weak encryption algorithms to protect stored passwords within the application's initialization files. These weak encryption methods can be easily reversed or decrypted by remote attackers without requiring authentication or user interaction. As a result, attackers can obtain plaintext passwords, which may grant them unauthorized access to FTP servers or other systems relying on these credentials. The vulnerability is classified with a CVSS score of 7.5, indicating a high severity level. The attack vector is network-based (AV:N), requires no authentication (Au:N), and has low attack complexity (AC:L). The impact spans confidentiality, integrity, and availability, as attackers can compromise sensitive data, modify files, or disrupt services by leveraging stolen credentials. Although this vulnerability dates back to 1999 and no official patches are available, the risk remains relevant for organizations still using legacy WS_FTP Pro 6.0 installations. Given the age of the software, modern versions likely have addressed this issue, but legacy systems remain vulnerable if not upgraded or mitigated.

For European organizations, the impact of this vulnerability can be significant, especially for those relying on WS_FTP Pro 6.0 for file transfers involving sensitive or regulated data. Compromise of FTP credentials can lead to unauthorized data access, data exfiltration, or injection of malicious files, potentially violating data protection regulations such as GDPR. The ability to decrypt passwords remotely without authentication increases the risk of widespread exploitation if legacy systems are exposed to untrusted networks. This could result in operational disruptions, reputational damage, and regulatory penalties. Organizations in sectors such as finance, healthcare, government, and critical infrastructure, where secure file transfer is essential, are particularly at risk. The vulnerability also poses a risk to supply chain security if FTP credentials are used to access partner or vendor systems.

1. Immediate upgrade or replacement of WS_FTP Pro 6.0 with a modern, supported FTP client that uses strong encryption and secure credential storage mechanisms. 2. If upgrading is not immediately feasible, restrict network access to systems running WS_FTP Pro 6.0 by implementing strict firewall rules and network segmentation to limit exposure to untrusted networks. 3. Avoid storing passwords in initialization files; instead, use secure credential vaults or prompt for credentials at runtime. 4. Monitor network traffic for unauthorized FTP access attempts and unusual file transfer activities. 5. Implement multi-factor authentication (MFA) on FTP servers where possible to reduce the impact of credential compromise. 6. Conduct regular audits of legacy systems and credentials to identify and remediate weak encryption usage. 7. Educate users and administrators about the risks of using outdated software and the importance of secure credential management.