PCMan FTP Server
0 remedies
cpe:2.3:a:pcman_ftp_server_project:pcman_ftp_server:*:*:*:*:*:*:*
0 remedies
- 2.0.7
PCMan FTP Server Buffer Overflow Vulnerability in MDELETE Command Handler
Vulnerability
A critical buffer overflow vulnerability has been identified in PCMan FTP Server version 2.0.7. The issue arises in the MDELETE Command Handler, where the server improperly validates the size of input buffers before copying them to output buffers. This oversight allows for remote exploitation of the vulnerability, potentially leading to arbitrary code execution.
Impact
Exploitation of this vulnerability causes a buffer overflow, which can be leveraged to execute arbitrary code on the server.
Reproduction
The vulnerability can be reproduced by sending a crafted MDELETE command that includes a payload designed to overflow the buffer. This can be done using a FTP client or a script that automates the process. The payload should be carefully crafted to include the desired shellcode and overwrite the return address with a location that executes the shellcode.
Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM
Vulnerability Rating
Custom Algorithm
spread
1.0impact
10.0exploitability
9.7remediation
0.0relevance
0.0threat
6.4urgency
2.9incentive
10.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.