CVE-2025-3374

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions PCMan FTP Server version 2.0.7

Description A critical vulnerability was found in PCMan FTP Server, affecting an unknown functionality of the CCC Command Handler component. The manipulation leads to a buffer overflow, and the attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Recommendations For PCMan FTP Server version 2.0.7, at the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to the CCC Command Handler component to minimize the risk of exploitation. Avoid using the affected functionality until the issue is resolved.

Exploit

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-120

Related Identifiers

CVE-2025-3374

Affected Products

Pcman Ftp Server

CVE-2025-3374

Weakness Enumeration

Related Identifiers

Affected Products

References · 11