CVE-2025-3378: PCMan FTP Server EPRT Command buffer overflow
First published: Mon Apr 07 2025(Updated: )
A vulnerability classified as critical has been found in PCMan FTP Server 2.0.7. Affected is an unknown function of the component EPRT Command Handler. The manipulation leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| PCMan FTP Server | ||
| PCMan FTP Server | =2.0.7 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2025-3378?
CVE-2025-3378 is classified as a critical vulnerability.
How does CVE-2025-3378 affect PCMan FTP Server?
CVE-2025-3378 affects the EPRT Command Handler component of PCMan FTP Server, leading to a potential buffer overflow.
Can CVE-2025-3378 be exploited remotely?
Yes, CVE-2025-3378 can be exploited remotely.
How do I fix CVE-2025-3378?
To fix CVE-2025-3378, update PCMan FTP Server to the latest version that addresses this vulnerability.
What is the potential impact of exploiting CVE-2025-3378?
Exploiting CVE-2025-3378 may allow an attacker to execute arbitrary code on the affected system.
- agent/title
- agent/weakness
- agent/type
- agent/references
- agent/description
- agent/first-publish-date
- agent/guess-ai
- agent/software-canonical-lookup
- agent/softwarecombine
- agent/severity
- agent/author
- agent/source
- agent/tags
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- agent/event
- collector/epss-latest
- source/FIRST
- agent/epss
- collector/nvd-api
- source/NVD
- vendor/pcman
- canonical/pcman ftp server
- version/pcman ftp server/2.0.7