CVE-2009-3483
GlobalSCAPE CuteFTP 8.3.3 and 8.3.3.0054 - Heap-Based Buffer Overflow via Long Site Label
Title source: llmDescription
Heap-based buffer overflow in the Create New Site feature in GlobalSCAPE CuteFTP Professional, Home, and Lite 8.3.3 and 8.3.3.0054 allows user-assisted remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a site list containing an entry with a long label.
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/58387
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/36874
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/53487
Exploit x_refsource_misc
http://www.packetstormsecurity.org/0909-exploits/Dr_IDE-CuteFTP_FTP_8.3.3-PoC.py.txt
Scores
EPSS
0.0468
EPSS Percentile
90.7%
Details
CWE
CWE-119
Status
published
Products (2)
globalscape/cuteftp
8.3.3 (3 CPE variants)
globalscape/cuteftp
8.3.3.0054 (3 CPE variants)
Published
Sep 30, 2009
Tracked Since
Feb 18, 2026