FreeFloat FTP Server BYE Command buffer overflow

May 30, 2025 invoker category_cve

CVE Details

Basic Information

Title FreeFloat FTP Server BYE Command buffer overflow
Type cve
Published 2025-05-30T16:31:04.446Z
Last Seen

Product Information

Vendor FreeFloat
Product FTP Server
Version 1.0

CVSS Information

Base Score 6.9 (MEDIUM)
Attack Vector CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
Confidentiality Impact
Integrity Impact
Availability Impact

AI Analysis

AI Description A critical buffer overflow vulnerability exists in the BYE command handler of FreeFloat FTP Server 1.0, allowing remote attackers to execute arbitrary code or cause a denial of service. The vulnerability is remotely exploitable and has been publicly disclosed.
AI Severity High
Vendor FreeFloat
Product FTP Server
Affected Version 1.0

Additional Information

CVE List
CWE List CWE-120, CWE-119
Bulletin Family
Source Data FreeFloat FTP Server 1.0

Source Information

Source Data FreeFloat FTP Server 1.0
Source Link

Description

A vulnerability was found in FreeFloat FTP Server 1.0. It has been classified as critical. Affected is an unknown function of the component BYE Command Handler. The manipulation leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

CVSS Score Summary

Base Score: 6.9 (MEDIUM)

View Full CVE Details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.