Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Lifecycle Timeline
4DescriptionCVE.org
A vulnerability, which was classified as critical, has been found in PCMan FTP Server 2.0.7. This issue affects some unknown processing of the component SET Command Handler. The manipulation leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
AnalysisAI
Critical buffer overflow vulnerability in the SET Command Handler of PCMan FTP Server 2.0.7 that allows remote attackers to cause denial of service and potentially execute arbitrary code with no authentication required. The vulnerability has been publicly disclosed with exploit code available, making it an active threat to unpatched FTP server deployments. With a CVSS score of 7.3 and low attack complexity, this vulnerability represents a significant risk to organizations running vulnerable versions.
Technical ContextAI
PCMan FTP Server is a lightweight FTP server implementation commonly used in embedded systems and Windows environments. The vulnerability resides in the SET command handler component, which processes FTP protocol commands. CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer) indicates that the SET command fails to properly validate input length before writing to a fixed-size buffer, resulting in a classic stack-based or heap-based buffer overflow. When a user sends a specially crafted SET command with an oversized argument, the server writes beyond buffer boundaries, corrupting adjacent memory. This occurs during FTP command parsing, which is executed with server privileges and network-accessible, making remote exploitation trivial. The FTP protocol specification does not inherently limit SET command argument lengths, placing responsibility on server implementations to enforce proper bounds checking.
RemediationAI
Upgrade PCMan FTP Server to the latest available version (vendor should release a patched version; check https://www.pcmanftpserver.com or official repository) Workaround: Disable the SET command in FTP server configuration if possible, or restrict SET command usage to authenticated users only Network Mitigation: Implement FTP firewall rules to restrict FTP access to trusted networks only; disable FTP on internet-facing systems and use SFTP/SCP instead Detection: Monitor FTP server logs for abnormally long SET command arguments; implement IDS/IPS rules to block oversized FTP SET commands Alternative: Replace PCMan FTP Server with actively maintained alternatives such as FileZilla Server, ProFTPD, or vsftpd with regular security updates
Wing FTP Server before 7.4.4 contains a critical remote code execution vulnerability (CVE-2025-47812, CVSS 10.0) through
Critical buffer overflow vulnerability in the NOOP Command Handler of FreeFloat FTP Server 1.0 that allows remote, unaut
The FTP (aka "Implementation of a simple FTP client and server") project through 96c1a35 allows remote attackers to caus
Critical buffer overflow vulnerability in PCMan FTP Server 2.0.7's SYSTEM Command Handler that allows unauthenticated re
Critical buffer overflow vulnerability in PCMan FTP Server 2.0.7 affecting the PLS Command Handler component. Remote att
A buffer overflow vulnerability in A vulnerability classified as critical (CVSS 7.3). Risk factors: public PoC available
Critical buffer overflow vulnerability in the HOST Command Handler of FreeFloat FTP Server 1.0 that allows unauthenticat
Critical buffer overflow vulnerability in FreeFloat FTP Server 1.0's SYSTEM Command Handler that allows unauthenticated
Critical buffer overflow vulnerability in the PASV command handler of FreeFloat FTP Server 1.0 that allows unauthenticat
Linux kernel netfilter FTP NAT helper fails to properly initialize sequence adjustment extensions when connection tracki
Same weakness CWE-119 – Buffer Overflow
View allSame technique Buffer Overflow
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2025-16966