CVE-2004-1327

Crystal ART Software Crystal FTP - Buffer Overflow

Title source: rule

Description

Buffer overflow in Crystal FTP Client 2.8 allows remote malicious servers to execute arbitrary code via a response to a LIST command that contains a file name with a long extension.

Exploits (1)

exploitdb WORKING POC VERIFIED

by cybertronic · cremotewindows

https://www.exploit-db.com/exploits/711

View Code ZIP pw:eip

References (4)

[Exploit] http://www.securityfocus.com/bid/12038

[Mailing List] http://marc.info/?l=bugtraq&m=110356203624337&w=2

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/18594

[Third Party Advisory] http://secunia.com/advisories/13583/

Scores

EPSS 0.0467

EPSS Percentile 89.4%

Details

Status published

Products (5)

crystal_art_software/crystal_ftp 2.4

crystal_art_software/crystal_ftp 2.5

crystal_art_software/crystal_ftp 2.6

crystal_art_software/crystal_ftp 2.7

crystal_art_software/crystal_ftp 2.8

Published Dec 31, 2004

Tracked Since Feb 18, 2026