CVE-2019-25361

Name of the Vulnerable Software and Affected Versions Ayukov NFTP client version 1.71

Description The Ayukov NFTP client contains a buffer overflow issue in how it handles the SYST command. Remote attackers can exploit this by sending a specially crafted SYST command with an oversized payload. Successful exploitation allows the execution of arbitrary code, potentially leading to the execution of a bind shell on port 5150. The SYST command is vulnerable to a buffer overflow when processing oversized payloads.

Recommendations Update to a newer version of Ayukov NFTP client that addresses this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.