Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2003-1260 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Cuteftp

4 documents4 sources

Severity

7.6HIGHNVD

EPSS

23.0%

top 4.08%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Timeline

PublishedDec 31

Latest updateApr 29

Description

Buffer overflow in CuteFTP 5.0 allows remote attackers to execute arbitrary code via a long response to a LIST command.

AV:N/AC:H/C:C/I:C/A:CExploitability: 4.9 | Impact: 10.0

GHSA

GHSA-h56m-2v87-fv2w: Buffer overflow in CuteFTP 5↗2022-04-29

▶

CVEList

CVE-2003-1260: Buffer overflow in CuteFTP 5↗2005-11-16

▶

Exploit-DB

GlobalScape CuteFTP 5.0 - LIST Response Buffer Overflow↗2003-03-26

▶