3492 matches found
CVE-2010-20113 EasyFTP Server list.html path Stack Buffer Overflow
EasyFTP Server 1.7.0.11 and earlier contains a stack-based buffer overflow vulnerability in its HTTP interface. When processing a GET request to list.html, the server fails to properly validate the length of the path parameter. Supplying an excessively long value causes a buffer overflow on the...
PT-2025-34305 · Unknown · Ftp Synchronizer Professional
Name of the Vulnerable Software and Affected Versions: FTP Synchronizer Professional versions prior to 4.0.73.274 Description: A stack-based buffer overflow exists in FTP Synchronizer Professional when the client connects to an FTP server and issues a LIST command. A server response containing an...
Gekko Manager FTP Client 安全漏洞
Gekko Manager FTP Client is an FTP client software from Gekko Manager, Inc. A security vulnerability exists in Gekko Manager FTP Client version 0.77 and prior versions, which originates from the FTP directory listing parser not validating the length of filenames, and could lead to a stack buffer...
Seagull FTP Client 安全漏洞
Seagull FTP Client is an FTP client software from Seagull USA. A security vulnerability exists in Seagull FTP Client v3.3 Build 409 and earlier versions, which stems from the FTP directory listing parser not validating the length of filenames, and could lead to a stack buffer overflow and executi...
PT-2025-34311 · Sftpclient · Xftp Client
Name of the Vulnerable Software and Affected Versions: Xftp FTP Client versions through 3.0 build 0238 Description: Xftp FTP Client versions up to and including 3.0 build 0238 contain a stack-based buffer overflow vulnerability. This issue is triggered by a maliciously crafted PWD response from a...
PT-2025-34306 · Ftppad · Ftppad
Name of the Vulnerable Software and Affected Versions: FTPPad versions prior to 1.3.0 Description: FTPPad contains a stack-based buffer overflow in its FTP directory listing parser. When the client connects to an FTP server and receives a crafted response to a LIST command containing an excessive...
PT-2025-34303 · Unknown · Seagull Ftp Client
Name of the Vulnerable Software and Affected Versions: Seagull FTP Client version 3.3 build 409 Description: Seagull FTP Client contains a stack-based buffer overflow in its FTP directory listing parser. When the client connects to an FTP server and receives a crafted response to a LIST command...
CVE-2010-20049
LeapFTP 3.1.x contains a stack-based buffer overflow vulnerability in its FTP client parser. When the client receives a directory listing containing a filename longer than 528 bytes, the application fails to properly bound-check the input and overwrites the Structured Exception Handler SEH chain...
CVE-2010-20103
ProFTPD 1.3.3c contains a backdoor in its source tarball (Nov 28–Dec 2, 2010) enabling a hidden FTP command trigger that executes arbitrary shell commands as root. This is a remote, unauthenticated escalation. Remediate by upgrading to ProFTPD 1.3.3d or newer (per connected SNYK advisory).
CVE-2010-20049
LeapFTP
CVE-2010-20049 LeapFTP < 3.1.x Stack Buffer Overflow
LeapFTP 3.1.x contains a stack-based buffer overflow vulnerability in its FTP client parser. When the client receives a directory listing containing a filename longer than 528 bytes, the application fails to properly bound-check the input and overwrites the Structured Exception Handler SEH chain...
CVE-2010-20049 LeapFTP < 3.1.x Stack Buffer Overflow
LeapFTP 3.1.x contains a stack-based buffer overflow vulnerability in its FTP client parser. When the client receives a directory listing containing a filename longer than 528 bytes, the application fails to properly bound-check the input and overwrites the Structured Exception Handler SEH chain...
CVE-2010-20045
FileWrangler = 5.30 suffers from a stack-based buffer overflow vulnerability when parsing directory listings from an FTP server. A malicious server can send an overlong folder name in response to a LIST command, triggering memory corruption during client-side rendering. Exploitation requires...
CVE-2025-6625
CWE-20: Improper Input Validation vulnerability exists that could cause a Denial Of Service when specific crafted FTP command is sent to the device...
OSV-2025-657 Heap-use-after-free in ftp_pp_statemachine
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=439473053 Crash type: Heap-use-after-free READ 8 Crash state: ftpppstatemachine ftpdoing multirunsingle...
CursorArts FileWrangler 安全漏洞
CursorArts FileWrangler is a file management program from CursorArts, Inc. A security vulnerability exists in CursorArts FileWrangler 5.30 and earlier versions, which stems from a stack-based buffer overflow when parsing FTP server directory listings, and could lead to the execution of arbitrary...
📄 Piciorgros TMO-100 Configuration Change
Piciorgros TMO-100 allows for an unauthorized configuration change via TFTP. This issue affects versions prior to 4.20. Classification -------------- - CWE-306: Missing Authentication for Critical Function - CWE-940: Improper Verification of Source of a Communication Channel - CWE-200: Exposure o...
CVE-2025-6625
CWE-20: Improper Input Validation vulnerability exists that could cause a Denial Of Service when specific crafted FTP command is sent to the device...
CVE-2025-6625
CVE-2025-6625 affects Schneider Electric Modicon M340 controllers and several Ethernet/communication modules (e.g., BMXNOR0200H, BMXNGD0100, BMXNOC0401, BMXNOE0100, BMXNOE0110) with an improper input validation flaw that can cause Denial of Service by sending a specially crafted FTP command. Publ...
CVE-2025-6625
CWE-20: Improper Input Validation vulnerability exists that could cause a Denial Of Service when specific crafted FTP command is sent to the device...