CNNVD-202602-1168 Information

CNNVD ID

CNNVD-202602-1168

Related CVE

CVE-2020-37122

• CNNVD Published: 2026-02-07

Description (Chinese)

Nsasoft SpotFTP是美国Nsasoft公司的一款FTP客户端密码恢复工具。 Nsasoft SpotFTP 2.4.8版本存在安全漏洞，该漏洞源于存在大缓冲区溢出，可能导致攻击者使应用程序崩溃。

Description (English)

Nsasoft SpotTP is an FTP client password restoration tool for Nsasoft in the United States. There is a security loophole in version 2.4.8 of Nsasoft SpotFTP, which stems from the spilling of a large buffer zone, which could lead to a breakdown of the application by the attackers.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Nsasoft

Published

2026-02-07

Last Modified

2026-02-24

References

http://www.nsauditor.com/ http://www.nsauditor.com/spotftp.html https://www.exploit-db.com/exploits/48132 https://www.vulncheck.com/advisories/spotftp-ftp-password-recover-denial-of-service https://access.redhat.com/security/cve/cve-2020-37122