CyberSec.Space Logo
返回 CVE 浏览器

CVE-2009-3483

CRITICAL
9.3
CVSS Severity Score
EPSS Score0.0350%
EPSS Percentile9.98th
Published2009年9月30日
Last Modified2026年4月23日

Vulnerability Description

Heap-based buffer overflow in the Create New Site feature in GlobalSCAPE CuteFTP Professional, Home, and Lite 8.3.3 and 8.3.3.0054 allows user-assisted remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a site list containing an entry with a long label.

Affected Platforms (CPE)

📦
Globalscape

Cuteftp

= 8.3.3
📦
Globalscape

Cuteftp

= 8.3.3
📦
Globalscape

Cuteftp

= 8.3.3
📦
Globalscape

Cuteftp

= 8.3.3.0054
📦
Globalscape

Cuteftp

= 8.3.3.0054
📦
Globalscape

Cuteftp

= 8.3.3.0054

References & Advisories

🔗 http://secunia.com/advisories/36874
🔗 http://www.osvdb.org/58387
🔗 http://www.packetstormsecurity.org/0909-exploits/Dr_IDE-CuteFTP_FTP_8.3.3-PoC.py.txt
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/53487
🔗 http://secunia.com/advisories/36874
🔗 http://www.osvdb.org/58387
🔗 http://www.packetstormsecurity.org/0909-exploits/Dr_IDE-CuteFTP_FTP_8.3.3-PoC.py.txt
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/53487

相关漏洞威胁

CVE-2008-27799.3

Directory traversal vulnerability in GlobalSCAPE CuteFTP Home 8.2.0 Build 02.26.2008.4 and CuteFTP Pro 8.2.0 Build 04.01.2008.1 al...

CVE-2018-253668.4

CuteFTP 5.0 XP contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by injecting malicio...

CVE-2003-12607.6

Buffer overflow in CuteFTP 5.0 allows remote attackers to execute arbitrary code via a long response to a LIST command.

CVE-2003-12597.5

Buffer overflow in CuteFTP 4.2 and 5.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary...