FreeFloat FTP Server NOOP Command buffer overflow

June 3, 2025 invoker category_cve

CVE Details

Basic Information

Title FreeFloat FTP Server NOOP Command buffer overflow
Type cve
Published 2025-06-04T00:31:04.608Z
Last Seen

Product Information

Vendor FreeFloat
Product FTP Server
Version 1.0

CVSS Information

Base Score 6.9 (MEDIUM)
Attack Vector CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
Confidentiality Impact
Integrity Impact
Availability Impact

AI Analysis

AI Description A critical buffer overflow vulnerability exists in FreeFloat FTP Server 1.0’s NOOP command handler, allowing remote attackers to execute arbitrary code. The exploit is publicly available.
AI Severity High
Vendor FreeFloat
Product FTP Server
Affected Version 1.0

Additional Information

CVE List
CWE List CWE-120, CWE-119
Bulletin Family
Source Data FreeFloat FTP Server 1.0

Source Information

Source Data FreeFloat FTP Server 1.0
Source Link

Description

A vulnerability, which was classified as critical, was found in FreeFloat FTP Server 1.0. Affected is an unknown function of the component NOOP Command Handler. The manipulation leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

CVSS Score Summary

Base Score: 6.9 (MEDIUM)

View Full CVE Details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.