CyberSec.Space Logo
Back to CVE Browser

CVE-2009-3483

CRITICAL
9.3
CVSS Severity Score
EPSS Score0.0350%
EPSS Percentile9.98th
PublishedSep 30, 2009
Last ModifiedApr 23, 2026

Vulnerability Description

Heap-based buffer overflow in the Create New Site feature in GlobalSCAPE CuteFTP Professional, Home, and Lite 8.3.3 and 8.3.3.0054 allows user-assisted remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a site list containing an entry with a long label.

Affected Platforms (CPE)

πŸ“¦
Globalscape

Cuteftp

= 8.3.3
πŸ“¦
Globalscape

Cuteftp

= 8.3.3
πŸ“¦
Globalscape

Cuteftp

= 8.3.3
πŸ“¦
Globalscape

Cuteftp

= 8.3.3.0054
πŸ“¦
Globalscape

Cuteftp

= 8.3.3.0054
πŸ“¦
Globalscape

Cuteftp

= 8.3.3.0054

References & Advisories

πŸ”— http://secunia.com/advisories/36874
πŸ”— http://www.osvdb.org/58387
πŸ”— http://www.packetstormsecurity.org/0909-exploits/Dr_IDE-CuteFTP_FTP_8.3.3-PoC.py.txt
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/53487
πŸ”— http://secunia.com/advisories/36874
πŸ”— http://www.osvdb.org/58387
πŸ”— http://www.packetstormsecurity.org/0909-exploits/Dr_IDE-CuteFTP_FTP_8.3.3-PoC.py.txt
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/53487

Related Vulnerabilities

CVE-2008-27799.3

Directory traversal vulnerability in GlobalSCAPE CuteFTP Home 8.2.0 Build 02.26.2008.4 and CuteFTP Pro 8.2.0 Build 04.01.2008.1 al...

CVE-2018-253668.4

CuteFTP 5.0 XP contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by injecting malicio...

CVE-2003-12607.6

Buffer overflow in CuteFTP 5.0 allows remote attackers to execute arbitrary code via a long response to a LIST command.

CVE-2003-12597.5

Buffer overflow in CuteFTP 4.2 and 5.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary...