Vulnerability: Local Buffer Overflow in Personal FTP Server 8.0f(g)

20. February 2018


Vulnerable software

FTP server 8.0f(g)


Local Buffer Overflow (SEH protected)-> Code Execution

Time Line

  • 01/24/2018 Vendor informed
  • 01/30/2018 Vendor reminded
  • 12.02.2018 Software patched
  • 20.02.2018 Vulnerability Disclose


The free FTP Server from Michael Roth Software is vulnerable to a local buffer overflow. One of the advanced options within the application didn’t have input validation which leads to code execution.


Similar posts

While doing my preperation for the OSCE i found an exploit for the coolpalyer+ version 2.19.1 from 2009. I decided to [...]

19. February 2018

CVE CVE-2018-16231 Vulnerable software FTP server <= 8.4f Vulnerability Remote denial of service Timeline 30.01.2018 Seller informed(also local BO ) [...]

25. August 2018

CVE CVE-2018-7272 Vulnerable software AT 5.0.0, 5.1.0 Vulnerability Unauthorized access Timeline 15.12.2017 Seller informs X.01.2018  Manufacturer has patched vulnerability 24.01.2018 Manufacturer [...]

25. August 2018

Description Screenshots of applications that are moved to the background are created for better user experience. Unfortunately, other apps can [...]

1. July 2019