Security Advisory

CVE-2019-25686

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-05 20:45:35

Last updated 2026-04-06 15:43:16

Assigner VulnCheck

State PUBLISHED

Description

Core FTP 2.0 build 653 contains a denial of service vulnerability in the PBSZ command that allows unauthenticated attackers to crash the service by sending a malformed command with an oversized buffer. Attackers can send a PBSZ command with a payload exceeding 211 bytes to trigger an access violation and crash the FTP server process.

← Browse all CVEs View on cve.org ↗