CVE-2025-5074

Name of the Vulnerable Software and Affected Versions FreeFloat FTP Server version 1.0

Description A critical vulnerability was found in the PROMPT Command Handler component of FreeFloat FTP Server, leading to a buffer overflow. This issue can be exploited remotely. The vulnerability is classified as a buffer copy without checking the size of the input, also known as a 'Classic Buffer Overflow'.

Recommendations For FreeFloat FTP Server version 1.0, as a temporary workaround, consider disabling the PROMPT Command Handler component until a patch is available. Restrict access to the FTP server to minimize the risk of exploitation. Avoid using the vulnerable function of the PROMPT Command Handler component in the affected FreeFloat FTP Server version until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.