CVE-2020-37067

High CVSS: 7.1

Filetto 1.0 FTP server contains a denial of service vulnerability in the FEAT command processing that allows attackers to crash the service. Attackers can send an oversized FEAT command with 11,008 bytes of repeated characters to trigger a buffer overflow and terminate the FTP service.

Vendor

Product

CWE

CWE-770

Yayın Tarihi

2026-02-03 22:16:21

Güncelleme

2026-02-04 16:33:44

Source Identifier

disclosure@vulncheck.com

KEV Date Added

Kategoriler

CWE-770 HIGH 2026

Referanslar

http://www.utillyty.eu https://sourceforge.net/projects/filetto https://www.exploit-db.com/exploits/48503 https://www.vulncheck.com/advisories/filetto-feat-denial-of-service