Buffer Overflow Vulnerability in WinFTP by Tiscali
CVE-2009-0351

Currently unrated

Key Information:

Vendor

Wftpserver

Status
Winftp Ftp Server
Vendor
CVE Published:
29 January 2009

What is CVE-2009-0351?

A stack-based buffer overflow exists in WFTPSRV.exe of WinFTP 2.3.0. This vulnerability can be exploited by remote authenticated users who send a specially crafted LIST command that starts with an asterisk (*). Successful exploitation could enable an attacker to execute arbitrary code on the server, potentially leading to unauthorized access and control over sensitive data.

References

https://www.exploit-db.com/exploits/7875
exploitx_refsource_EXPLOIT-DB
http://www.securityfocus.com/bid/33454
vdb-entryx_refsource_BID
http://www.vupen.com/english/advisories/2009/0254
vdb-entryx_refsource_VUPEN

EPSS Score

8% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.