Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Free Float FTP 1.0 STOR Command Remote Buffer Overflow
Vulnerability Description
Free Float FTP 1.0 contains a buffer overflow vulnerability in the STOR command handler that allows remote attackers to execute arbitrary code by sending a crafted STOR request with an oversized payload. Attackers can authenticate with anonymous credentials and send a malicious STOR command containing 247 bytes of padding followed by a return address and shellcode to trigger code execution on the FTP server.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
跨界内存写
Vulnerability Title
Free Float FTP 缓冲区错误漏洞
Vulnerability Description
Free Float FTP是Free Float公司的一款FTP服务器软件。 Free Float FTP 1.0版本存在缓冲区错误漏洞,该漏洞源于STOR命令处理程序存在缓冲区溢出,可能导致远程攻击者通过发送包含超大有效载荷的特制STOR请求执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A