CVE-2025-5111
Critical vulnerability found in FreeFloat FTP Server 1.0 TYPE Command Handler component causing buffer overflow.
Overview
A critical flaw has been detected in the unknown function of the TYPE Command Handler component of FreeFloat FTP Server 1.0. This vulnerability can cause a buffer overflow, which can be remotely exploited.
Technical Details
The exploit manipulates the TYPE Command Handler component leading to buffer overflow. This attack needs no privileges and can be executed remotely. This vulnerability also impacts the confidentiality, integrity & availability of the system to a low extent.
CVSS Metrics
- Base Score: 7.3
- Attack Vector: NETWORK
- Attack Complexity: LOW
- Privileges Required: NONE
- User Interaction: NONE
- Scope: UNCHANGED
- Confidentiality Impact: LOW
- Integrity Impact: LOW
- Availability Impact: LOW
Impact
The exploit might allow an attacker to overflow the buffer, causing a system crash or potentially permitting execution of arbitrary code.
Recommendations
To mitigate this issue, it is recommended to check for updates or patches for FreeFloat FTP Server 1.0.
Threat Metrics
- "cvss_score": 7.3
- "severity": "MEDIUM"
- "attack_vector": "NETWORK"
- "attack_complexity": "LOW"