How to fix EUVD-2025-16958?

Within 24 hours: Inventory all systems running PCMan FTP Server 2.0.7 and assess exposure to untrusted networks. Within 7 days: Implement network segmentation to restrict FTP access to authorized users only, disable the PLS command handler if not required, and monitor for suspicious FTP activity. Within 30 days: Evaluate migration to an alternative, actively maintained FTP server solution or upgrade to a patched version once available from the vendor.

Is Ftp affected by EUVD-2025-16958?

PCMan FTP Server 2.0.7 contains a remotely exploitable buffer overflow vulnerability with a public proof-of-concept exploit.

EUVD-2025-16958

| CVE-2025-5635 HIGH

2025-06-05 [email protected]

7.3

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

Low

Lifecycle Timeline

EUVD ID Assigned

Mar 14, 2026 - 17:53 euvd

EUVD-2025-16958

Analysis Generated

Mar 14, 2026 - 17:53 vuln.today

PoC Detected

Jun 17, 2025 - 20:42 vuln.today

Public exploit code

CVE Published

Jun 05, 2025 - 04:15 nvd

HIGH 7.3

Description

A vulnerability classified as critical was found in PCMan FTP Server 2.0.7. This vulnerability affects unknown code of the component PLS Command Handler. The manipulation leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Analysis

Critical buffer overflow vulnerability in PCMan FTP Server 2.0.7 affecting the PLS Command Handler component. Remote attackers can exploit this flaw without authentication or user interaction to achieve confidentiality, integrity, and availability impacts. Public exploit code is available and the vulnerability may be actively exploited in the wild.

Technical Context

PCMan FTP Server is a lightweight FTP (File Transfer Protocol) server implementation. The vulnerability exists in the PLS Command Handler—a component responsible for parsing and processing the PLS protocol command. The root cause is classified as CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer), a classic buffer overflow vulnerability where untrusted input from remote FTP clients is not properly validated before being written to a fixed-size buffer. This allows an attacker to overflow the buffer, potentially corrupting adjacent memory, executing arbitrary code, or causing denial of service. The attack vector is network-based (AV:N) with low attack complexity (AC:L), requiring no authentication (PR:N) or user interaction (UI:N), making exploitation straightforward.

Affected Products

- product: PCMan FTP Server; vendor: PCMan Project; affected_version: 2.0.7; affected_component: PLS Command Handler; cpe: cpe:2.3:a:pcman_project:pcman_ftp_server:2.0.7:*:*:*:*:*:*:*; status: Vulnerable

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.2

CVSS: +36

POC: +20

EUVD-2025-16958 vulnerability details – vuln.today

Back

EUVD-2025-16958

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Priority Score

Share

EUVD-2025-16958

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Priority Score

Share

External POC / Exploit Code