CNNVD-202508-366 Information

CNNVD ID

CNNVD-202508-366

Related CVE

CVE-2012-10023

• CNNVD Published: 2025-08-05

Description (Chinese)

FreeFloat FTP Server是FreeFloat公司的一个FTP服务。 FreeFloat FTP Server 1.0.0版本存在安全漏洞，该漏洞源于未正确验证USER命令输入，可能导致缓冲区溢出和任意代码执行。

Description (English)

FreeFloat FTP Server is a FTP service of FreeFloat. FreeFloat FTP Server 1.0.0 has a security loophole, which results from inaccurate validation of USER orders, which may result in a buffer zone spill and arbitrary code enforcement.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

FreeFloat

Published

2025-08-05

Last Modified

2026-02-24

References

http://www.freefloat.com/sv/about-/about-.php https://web.archive.org/web/20101213050627/ https://my.saintcorporation.com/cgi-bin/exploit_info/freefloat_ftp_server_user_cmd https://www.exploit-db.com/exploits/15689 http://secunia.com/advisories/42465/ https://web.archive.org/web/20101208040029/ https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/ftp/freefloatftp_user.rb https://www.exploit-db.com/exploits/23243 https://www.vulncheck.com/advisories/freefloat-ftp-server-user-command-buffer-overflow https://access.redhat.com/security/cve/cve-2012-10023