CVE Details
Basic Information
| Title | FreeFloat FTP Server PASV Command buffer overflow |
|---|---|
| Type | cve |
| Published | 2025-06-04T01:00:16.681Z |
| Last Seen |
Product Information
| Vendor | FreeFloat |
|---|---|
| Product | FTP Server |
| Version | 1.0 |
CVSS Information
| Base Score | 6.9 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N |
| Confidentiality Impact | |
| Integrity Impact | |
| Availability Impact |
AI Analysis
| AI Description | A critical buffer overflow vulnerability exists in FreeFloat FTP Server 1.0’s PASV command handler, allowing remote attackers to execute arbitrary code. The exploit is publicly available and may be used to compromise vulnerable systems. |
|---|---|
| AI Severity | High |
| Vendor | FreeFloat |
| Product | FreeFloat FTP Server |
| Affected Version | 1.0 |
Additional Information
| CVE List | |
|---|---|
| CWE List | CWE-120, CWE-119 |
| Bulletin Family | |
| Source Data | FreeFloat FTP Server 1.0 |
Source Information
| Source Data | FreeFloat FTP Server 1.0 |
|---|---|
| Source Link |
Description
A vulnerability has been found in FreeFloat FTP Server 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the component PASV Command Handler. The manipulation leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
CVSS Score Summary
Base Score: 6.9 (MEDIUM)