Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Xftp FTP Client <= 3.0 PWD Response Buffer Overflow
Vulnerability Description
Xftp FTP Client version up to and including 3.0 (build 0238) contain a stack-based buffer overflow vulnerability triggered by a maliciously crafted PWD response from an FTP server. When the client connects to a server and receives an overly long directory string in response to the PWD command, the client fails to properly validate the length of the input before copying it into a fixed-size buffer. This results in memory corruption and allows remote attackers to execute arbitrary code on the client system.
CVSS Information
N/A
Vulnerability Type
栈缓冲区溢出
Vulnerability Title
NetSarang Computer Xftp FTP Client 安全漏洞
Vulnerability Description
NetSarang Computer Xftp FTP Client是美国NetSarang Computer公司的一个FTP客户端软件。 NetSarang Computer Xftp FTP Client 3.0 build 0238及之前版本存在安全漏洞,该漏洞源于处理PWD响应时未验证输入长度,可能导致栈缓冲区溢出和执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A