# CVE-1999-0017

## Description

FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.

## Risk Information

### CVSS v3

**Base Score:** 7.5  
**Severity:** MODERATE  

**Vector:**  
`AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N`

### CVSS v2

**Base Score:** 7.5  
**Severity:** MODERATE  

**Vector:**  
`AV:N/AC:L/Au:N/C:P/I:P/A:P`

### EPSS Score

**Exploitation Probability:** 0.545

## Associated Vulnerability

**No records found**

## Patch Details

**No records found**

## References

- [https://nvd.nist.gov/vuln/detail/CVE-2023-1234](https://nvd.nist.gov/vuln/detail/CVE-2023-1234)
- [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234)

## Details

### CWE ID

**No records found**

### CWE Type

Not Defined

### Published

1997-12-10

### Updated

2026-02-27