CNNVD-202507-3271 Information

CNNVD ID

CNNVD-202507-3271

Related CVE

CVE-2014-125114

• CNNVD Published: 2025-07-25

Description (Chinese)

Pablo Software Solutions i-Ftp是Pablo Software Solutions公司的一个FTP客户端软件。 Pablo Software Solutions i-Ftp 2.20版本存在安全漏洞，该漏洞源于Schedule.xml中Time属性处理不当，可能导致栈缓冲区溢出和任意代码执行。

Description (English)

Pablo Software Solutions i-Ftp is an FTP client of Pablo Software Solutions. Pablo Software Solutions i-Ftp 2.20 contains a security loophole that originates from the inappropriate handling of the Time properties in Schedule.xml, which could lead to spills and arbitrary code execution of the barrage buffer.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Pablo Software Solutions

Published

2025-07-25

Last Modified

2026-02-24

References

https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/fileformat/iftp_schedule_bof.rb https://www.exploit-db.com/exploits/35177 https://www.exploit-db.com/exploits/35671 https://www.vulncheck.com/advisories/iftp-schedule-stack-based-buffer-overflow https://access.redhat.com/security/cve/cve-2014-125114