cbcvebase.
CVE-2010-20049
published 2025-08-20

CVE-2010-20049: LeapFTP < 3.1.x contains a stack-based buffer overflow vulnerability in its FTP client parser. When the client receives a directory listing containing a…

PriorityP264critical9.3CVSS 4.0
AVNACLATNPRNUINVCHVIHVAHSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
EXPLOIT
EPSS
0.74%
50.1th percentile
LeapFTP < 3.1.x contains a stack-based buffer overflow vulnerability in its FTP client parser. When the client receives a directory listing containing a filename longer than 528 bytes, the application fails to properly bound-check the input and overwrites the Structured Exception Handler (SEH) chain. This allows an attacker operating a malicious FTP server to execute arbitrary code on the victim’s machine when the file is listed or downloaded.

Affected

1 ranges
VendorProductVersion rangeFixed in
leapwareleapftp< 3.1.*3.1.*

Detection & IOCsextracted from sources · hover to see the quote

versionLeapFTP 3.0.1
  • Detect FTP directory listing responses containing filenames exceeding 528 bytes in length, which is the overflow threshold for LeapFTP's parser.
  • Flag FTP LIST/NLST responses from untrusted servers where any single filename token exceeds 528 bytes; this is the specific trigger condition for the stack-based buffer overflow.
  • The Metasploit module targets the LeapFTP 3.0.1 client via the windows/ftp/leapftp_list_reply exploit path; alert on process crashes or shellcode execution originating from the LeapFTP process after receiving a LIST reply.
  • ·Vulnerability affects LeapFTP versions prior to 3.1.x; version 3.0.1 is explicitly confirmed vulnerable. Ensure version scope is validated before deploying detections to avoid false positives on patched versions.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.