Vulnerabilities > CVE-2019-9760 - Out-of-bounds Write vulnerability in Ftpgetter 5.97.0.177

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

ftpgetter

CWE-787

critical

exploit available

NVD

Published: 2019-03-14

Updated: 2024-11-21

Summary

FTPGetter Standard v.5.97.0.177 allows remote code execution when a user initiates an FTP connection to an attacker-controlled machine that sends crafted responses. Long responses can also crash the FTP client with memory corruption.

Vulnerable Configurations

Part	Description	Count
Application	Ftpgetter Ftpgetter Ftpgetter 5.97.0.177	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

Exploit-Db

file	exploits/windows/remote/46543.py
id	EDB-ID:46543
last seen	2019-03-14
modified	2019-03-14
platform	windows
port
published	2019-03-14
reporter	Exploit-DB
source	https://www.exploit-db.com/download/46543
title	FTPGetter Standard 5.97.0.177 - Remote Code Execution
type	remote

Packetstorm

data source	https://packetstormsecurity.com/files/download/152099/ftpgetterstd5970177-exec.txt
id	PACKETSTORM:152099
last seen	2019-03-15
published	2019-03-14
reporter	w4fz5uck5
source	https://packetstormsecurity.com/files/152099/FTPGetter-Standard-5.97.0.177-Remote-Code-Execution.html
title	FTPGetter Standard 5.97.0.177 Remote Code Execution

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Exploit-Db

Packetstorm

References