CVE-2025-5636
BaseFortify
Publication date: 2025-06-05
Last updated on: 2025-06-24
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| pcman | ftp_server | to 2.0.7 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-119 | The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data. |
| CWE-120 | The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-5636 is a critical buffer overflow vulnerability in PCMan FTP Server version 2.0.7, specifically in the SET Command Handler. The vulnerability occurs because the server improperly handles input buffers by copying input data without verifying its size, leading to a buffer overflow when an excessively long input is sent via the SET command. This overflow can cause the server to crash and allows an attacker to execute arbitrary code remotely without authentication, potentially gaining control over the server process. [1, 2, 3]
How can this vulnerability impact me? :
This vulnerability can impact you by allowing a remote attacker to execute arbitrary code on the affected PCMan FTP Server 2.0.7 without any authentication. Exploiting the buffer overflow can lead to a server crash (denial of service) or enable the attacker to gain remote shell access with the privileges of the FTP server process. This compromises the confidentiality, integrity, and availability of the system, potentially allowing unauthorized access, data theft, or further attacks within the network. [1, 2, 3]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by sending a specially crafted payload to the PCMan FTP Server's SET command and observing if the server crashes or behaves abnormally, indicating a buffer overflow. A practical detection method involves using a script or tool to send an excessively long input (e.g., 2007+ bytes) to the SET command and monitoring the server response or crash. For example, using a Perl script or tools like Metasploit to send a payload with 2007 'A' characters followed by a crafted return address can confirm the vulnerability. Commands to test could include connecting to the FTP server on port 21 and sending the following sequence: 1) USER anonymous 2) PASS anonymous 3) SET <payload> where <payload> is a string of 2007 'A's plus additional bytes to trigger overflow. This approach can be scripted using netcat, telnet, or custom scripts as shown in the exploit example. [1, 3]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include discontinuing use of PCMan FTP Server version 2.0.7, as no known patches or mitigations are available. Replace the vulnerable software with a secure alternative FTP server product. Additionally, restrict network access to the FTP server by limiting exposure to trusted networks or using firewall rules to block unauthorized access to port 21. Monitoring for unusual activity and applying network-level protections can reduce risk until the software is replaced. [2]