VYPR
Medium severity6.2NVD Advisory· Published Mar 30, 2026· Updated Apr 8, 2026

CVE-2018-25234

CVE-2018-25234

Description

SmartFTP Client 9.0.2615.0 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Host field. Attackers can paste a buffer of 300 repeated characters into the Host connection parameter to trigger an application crash.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Smartftp/Smartftp2 versions
    cpe:2.3:a:smartftp:smartftp:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:smartftp:smartftp:*:*:*:*:*:*:*:*range: <=9.0.2615.0
    • (no CPE)range: = 9.0.2615.0

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.