High severityNVD Advisory· Published Aug 20, 2025· Updated Apr 15, 2026
CVE-2010-20045
CVE-2010-20045
Description
FileWrangler <= 5.30 suffers from a stack-based buffer overflow vulnerability when parsing directory listings from an FTP server. A malicious server can send an overlong folder name in response to a LIST command, triggering memory corruption during client-side rendering. Exploitation requires passive user interaction—simply connecting to the server—without further input. Successful exploitation may lead to arbitrary code execution.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- cursorarts.com/ca_fw.htmlnvd
- raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/ftp/filewrangler_list_reply.rbnvd
- web.archive.org/web/20111016194057/https://www.corelan.be/index.php/2010/10/12/death-of-an-ftp-client/nvd
- www.exploit-db.com/exploits/16721nvd
- www.vulncheck.com/advisories/filewrangler-stack-buffer-overflownvd
News mentions
0No linked articles in our index yet.