CNNVD-202508-2544 Information
CNNVD ID
CNNVD-202508-2544
Related CVE
- CNNVD Published: 2025-08-21
Description (Chinese)
FTPPad是FTPPad公司的一个FTP客户端软件。 FTPPad 1.2.0及之前版本存在安全漏洞,该漏洞源于FTP目录列表解析器未验证输入长度,可能导致栈缓冲区溢出和执行任意代码。
Description (English)
FTPPad is a FTP client software for FTPPad. The FTPPad 1.2.0 and previous versions have a security loophole, which stems from the failure of the FTP Catalogue Parver to verify the length of the input, which may result in spilling over the fence and the implementation of any code.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
FTPPad
Published
2025-08-21
Last Modified
2026-02-24
References
https://www.vulncheck.com/advisories/ftppad-stack-buffer-overflow https://www.exploit-db.com/exploits/16726 https://www.chip.de/downloads/FTPPad_12993921.html https://www.corelan.be/index.php/2010/10/12/death-of-an-ftp-client/ https://web.archive.org/web/20111016194057/ https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/ftp/ftppad_list_reply.rb https://nvd.nist.gov/vuln/detail/CVE-2010-20108
Share on: