CNNVD-202508-2525 Information

CNNVD ID

CNNVD-202508-2525

Related CVE

CVE-2010-10014

• CNNVD Published: 2025-08-20

Description (Chinese)

Odin Secure FTP是Odin Secure公司的一个FTP客户端软件。 Odin Secure FTP 4.1及之前版本存在安全漏洞，该漏洞源于解析FTP LIST命令响应时存在基于栈的缓冲区溢出，可能导致执行任意代码。

Description (English)

Odin Security FTP is an FTP client of Odin Security. The security gap in Odin Security FTP 4.1 and earlier versions stems from the spill of a cage-based buffer zone during the analysis of the FTP LIST response, which may lead to the enforcement of arbitrary codes.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Odin Secure

Published

2025-08-20

Last Modified

2026-02-24

References

https://www.vulncheck.com/advisories/odin-secure-ftp-stack-buffer-overflow-via-list-response https://www.exploit-db.com/exploits/16716 https://www.corelan.be/index.php/2010/10/12/death-of-an-ftp-client/ https://web.archive.org/web/20111016194057/ http://odinshare.com/secure-ftp-expert.html https://web.archive.org/web/20111007123101/ https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/ftp/odin_list_reply.rb https://nvd.nist.gov/vuln/detail/CVE-2010-10014