2 matches found
FTPShell client denial of service vulnerability
FTPShell client is a set of windows-based file transfer program. A security vulnerability exists in FTPShell Client version 6.7. A remote attacker can cause a denial of service crash and execute arbitrary code by sending 400 'F' characters and FTP 220 response code to exploit the vulnerability...
CVE-2018-7573
An issue was discovered in FTPShell Client 6.7. A remote FTP server can send 400 characters of 'F' in conjunction with the FTP 220 response code to crash the application; after this overflow, one can run arbitrary code on the victim machine. This is similar to CVE-2009-3364 and CVE-2017-6465...