UNKNOWNCVE-2018-25234
SmartFTP Client 9.0.2615.0 Denial of Service via Host Field
Platform
windows
Component
smartftp-client
SmartFTP Client 9.0.2615.0 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Host field. Attackers can paste a buffer of 300 repeated characters into the Host connection parameter to trigger an application crash.
How to fix
Actualizar SmartFTP Client a una versión posterior a la 9.0.2615.0. Esto evitará que un atacante local pueda causar una denegación de servicio al ingresar una cadena excesivamente larga en el campo Host.
Monitor your dependencies automatically
Get notified when new vulnerabilities affect your projects. Free forever.
Start free