CVEs-PoC/2010/CVE-2010-20122.md

### [CVE-2010-20122](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-20122)
![](https://img.shields.io/static/v1?label=Product&message=Xftp%20FTP%20Client&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=*%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-121%20Stack-based%20Buffer%20Overflow&color=brightgreen)

### Description

Xftp FTP Client version up to and including 3.0 (build 0238) contain a stack-based buffer overflow vulnerability triggered by a maliciously crafted PWD response from an FTP server. When the client connects to a server and receives an overly long directory string in response to the PWD command, the client fails to properly validate the length of the input before copying it into a fixed-size buffer. This results in memory corruption and allows remote attackers to execute arbitrary code on the client system.

### POC

#### Reference
- https://www.exploit-db.com/exploits/12332
- https://www.exploit-db.com/exploits/16739
- https://www.vulncheck.com/advisories/xftp-ftp-client-pwd-response-buffer-overflow

#### Github
No PoCs found on GitHub currently.