Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
EasyFTP Server list.html path Stack Buffer Overflow
Vulnerability Description
EasyFTP Server 1.7.0.11 and earlier contains a stack-based buffer overflow vulnerability in its HTTP interface. When processing a GET request to list.html, the server fails to properly validate the length of the path parameter. Supplying an excessively long value causes a buffer overflow on the stack, potentially corrupting control flow structures. The vulnerability is exposed through the embedded web server and does not require authentication due to default anonymous access. The issue was resolved in version 1.7.0.12, after which the product was renamed to UplusFtp.
CVSS Information
N/A
Vulnerability Type
栈缓冲区溢出
Vulnerability Title
EasyFTP 安全漏洞
Vulnerability Description
EasyFTP是一个易于使用的FTP服务。 EasyFTP 1.7.0.11及之前版本存在安全漏洞,该漏洞源于处理GET请求时未验证路径参数长度,可能导致栈缓冲区溢出。
CVSS Information
N/A
Vulnerability Type
N/A