What the vulnerability does

01Description

NetSarang XFTP Client 6.0149 and earlier version contains a buffer overflow vulnerability caused by improper boundary checks when copying file name from an attacker controlled FTP server. That leads attacker to execute arbitrary code by sending a crafted filename.

Key dates

02Disclosure timeline

October 10, 2019 CVE published
August 5, 2024 Record updated