CVE-2012-10055P2CRITICALCVSS 9.3PoCv1.3.7 Beta2025-08-13
CVE-2012-10055 [CRITICAL] CWE-134 CVE-2012-10055: ComSndFTP FTP Server version 1.3.7 Beta contains a format string vulnerability in its handling of th
ComSndFTP FTP Server version 1.3.7 Beta contains a format string vulnerability in its handling of the USER command. By sending a specially crafted username containing format specifiers, a remote attacker can overwrite a hardcoded function pointer in memory (specifically WSACleanup from Ws2_32.dll). This allows the attacker to redirect execution fl
nvd