vendor:
FTP Server
by:
Koby
9
CVSS
CRITICAL
Buffer Overflow
119
CWE
Product Name: FTP Server
Affected Version From: 2
Affected Version To: 2.0.7
Patch Exists: NO
Related CWE:
CPE: a:pcman:ftp_server:2.0
Platforms Tested: Windows XP SP3
2015
PCMan’s FTP Server v2.0 – RENAME command remote buffer overflow
The PCMan's FTP Server v2.0 is vulnerable to a buffer overflow exploit in the RENAME command. An attacker can send a specially crafted RENAME command with a long payload, causing the server to crash or potentially execute arbitrary code.
Mitigation:
Apply the vendor's patch or upgrade to a newer version of the software.