vendor:
FTP Server
by:
Jerome Athias
7.5
CVSS
HIGH
Buffer Overflow
119
CWE
Product Name: FTP Server
Affected Version From: 1.4.0.4
Affected Version To: 1.4.0.4
Patch Exists: YES
Related CWE: N/A
CPE: a:argosoft:ftp_server:1.4.0.4
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2006
ArgoSoft FTP Server – PoC Exploit
ArgoSoft FTP Server is vulnerable to a buffer overflow attack when a long string is sent to the DELE command. This can be exploited to execute arbitrary code by sending a specially crafted string to the FTP server.
Mitigation:
Upgrade to the latest version of ArgoSoft FTP Server.