PT-2025-21742 · Unknown · Freefloat Ftp Server

Fernando Mengali

Published

2025-05-16

Updated

2025-05-23

CVE-2025-4791

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: FreeFloat FTP Server version 1.0

Description: A critical issue has been found in the HASH Command Handler component of the software, leading to a buffer overflow. This can be exploited remotely.

Recommendations: For FreeFloat FTP Server version 1.0, consider disabling the HASH Command Handler component until a patch is available to prevent potential buffer overflow exploitation.

Exploit

Fix

Memory Corruption

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-119CWE-120

Related Identifiers

CVE-2025-4791

Affected Products

Freefloat Ftp Server

PT-2025-21742 · Unknown · Freefloat Ftp Server

CVE-2025-4791

Weakness Enumeration

Related Identifiers

Affected Products

References · 9