Critical severityNVD Advisory· Published Aug 5, 2025· Updated Apr 15, 2026

CVE-2012-10035

Description

Turbo FTP Server versions 1.30.823 and 1.30.826 contain a buffer overflow vulnerability in the handling of the PORT command. By sending a specially crafted payload, an unauthenticated remote attacker can overwrite memory structures and execute arbitrary code with SYSTEM privileges.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/ftp/turboftp_port.rbnvd
www.exploit-db.com/exploits/22161nvd
www.vulncheck.com/advisories/turbo-ftp-server-port-command-buffer-overflownvd

News mentions

No linked articles in our index yet.

cvss	0.585
epss	0.043
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000