CVE-2025-4162

A vulnerability classified as critical was found in PCMan FTP Server up to 2.0.7. This vulnerability affects unknown code of the component ASCII Command Handler. The manipulation leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
References
Link Resource
https://fitoxs.com/exploit/exploit-03c7c0ace395d80182db07ae2c30f034.txt Exploit
https://vuldb.com/?ctiid.306694 Permissions Required VDB Entry
https://vuldb.com/?id.306694 Third Party Advisory VDB Entry
https://vuldb.com/?submit.561034 Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

cpe:2.3:a:pcman:ftp_server:*:*:*:*:*:*:*:*

History

24 Jun 2025, 15:48

Type Values Removed Values Added
References () https://fitoxs.com/exploit/exploit-03c7c0ace395d80182db07ae2c30f034.txt - () https://fitoxs.com/exploit/exploit-03c7c0ace395d80182db07ae2c30f034.txt - Exploit
References () https://vuldb.com/?ctiid.306694 - () https://vuldb.com/?ctiid.306694 - Permissions Required, VDB Entry
References () https://vuldb.com/?id.306694 - () https://vuldb.com/?id.306694 - Third Party Advisory, VDB Entry
References () https://vuldb.com/?submit.561034 - () https://vuldb.com/?submit.561034 - Third Party Advisory, VDB Entry
CPE cpe:2.3:a:pcman:ftp_server:*:*:*:*:*:*:*:*
First Time Pcman
Pcman ftp Server
Summary
  • (es) Se detectó una vulnerabilidad crítica en PCMan FTP Server (hasta la versión 2.0.7). Esta vulnerabilidad afecta al código desconocido del componente ASCII Command Handler. La manipulación provoca un desbordamiento del búfer. El ataque puede iniciarse remotamente. Se ha hecho público el exploit y puede que sea utilizado.

01 May 2025, 11:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-05-01 11:15

Updated : 2025-06-24 15:48


NVD link : CVE-2025-4162

Mitre link : CVE-2025-4162

CVE.ORG link : CVE-2025-4162


JSON object : View

Products Affected

pcman

  • ftp_server
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')