CVE-2019-25614: High Severity Vulnerability Disclosed

Free Float FTP 1.0 contains a buffer overflow vulnerability in the STOR command handler that allows remote attackers to execute arbitrary code by sending a crafted STOR request with an oversized payload. Attackers can authenticate with anonymous credentials and send a malicious STOR command containing 247 bytes of padding followed by a return address and shellcode to trigger code execution on the FTP server. This vulnerability has been assigned a CVSS score of 9.8, indicating critical severity. Organizations using affected products should review vendor advisories and apply patches as soon as they become available. Mitigation: Monitor vendor security bulletins, implement defense-in-depth strategies, and conduct vulnerability assessments regularly.