vendor:
FathFTP
by:
MadjiX
9.8
CVSS
CRITICAL
Buffer Overflow
119
CWE
Product Name: FathFTP
Affected Version From: 1.8
Affected Version To: 1.8
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested: Windows XP SP3 FR / IE6
FathFTP 1.8 (SEH) EnumFiles ActiveX Buffer Overflow
The FathFTP 1.8 ActiveX control is vulnerable to a buffer overflow when handling the EnumFiles method. An attacker can exploit this vulnerability to execute arbitrary code on a target system.
Mitigation:
The vendor has not released a patch or mitigation for this vulnerability. It is recommended to disable the affected ActiveX control or use alternative software.
