CVE-2025-4255

HIGH

PCMan FTP Server 2.0.7 - Buffer Overflow

Title source: llm

Description

A vulnerability classified as critical has been found in PCMan FTP Server 2.0.7. This affects an unknown part of the component RMD Command Handler. The manipulation leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Exploits (1)

exploitdb WORKING POC

by Fernando Mengali · textremotewindows

https://www.exploit-db.com/exploits/52326

View Code ZIP pw:eip

References (4)

[Exploit] https://fitoxs.com/exploit/exploit-52a33c7f018ae348f748582eae6aa7d38b2b5f1f3dc5d3b6793772e1f8223eb0.txt

[Permissions Required] https://vuldb.com/?ctiid.307359

[Third Party Advisory, VDB Entry] https://vuldb.com/?id.307359

[Exploit, Third Party Advisory, VDB Entry] https://vuldb.com/?submit.561623

Scores

CVSS v3 7.3

EPSS 0.0438

EPSS Percentile 89.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Details

CWE

CWE-119 CWE-120

Status published

Products (1)

pcman/ftp_server 2.0.7

Published May 05, 2025

Tracked Since Feb 18, 2026