CVE-2012-4992

FlashFXP 4.2 - RCE

Title source: llm

Description

Multiple buffer overflows in FlashFXP.exe in FlashFXP 4.2 allow remote authenticated users to execute arbitrary code via a long unicode string to (1) TListbox or (2) TComboBox.

Exploits (1)

exploitdb WRITEUP
by Vulnerability-Lab · textremotewindows
https://www.exploit-db.com/exploits/18555

References (8)

Scores

EPSS 0.5252
EPSS Percentile 97.9%

Classification

CWE
CWE-119
Status draft

Affected Products (1)

flashfxp/flashfxp

Timeline

Published Sep 19, 2012
Tracked Since Feb 18, 2026