•
MEDIUM Severity
CVE-2025-5110
Buffer overflow vulnerability in FreeFloat FTP Server 1.0
Overview
A critical vulnerability was found in FreeFloat FTP Server 1.0 which affects an unknown functionality of the component VERBOSE Command Handler. This can lead to buffer overflow.
Technical Details
The attack, which can be launched remotely, leads to buffer overflow due to manipulation. The attack also doesn't require any user interface to work.
CVSS Metrics
- Attack Vector: NETWORK
- Attack Complexity: LOW
- Privileges Required: NONE
- User Interaction: NONE
- Scope: UNCHANGED
- Confidentiality Impact: LOW
- Integrity Impact: LOW
- Availability Impact: LOW.
Impact
This vulnerability poses a high risk and could lead to the server's crash or code execution.
Recommendations
To mitigate the vulnerability, users are advised to update to the latest version of the FreeFloat FTP Server and regularly check for any available updates.
Threat Metrics
- "cvss_score": 7.3
- "severity": "MEDIUM"
- "attack_vector": "NETWORK"
- "attack_complexity": "LOW"