CVE-2020-37068 PUBLISHED

Konica Minolta FTP Utility 1.0 - 'LIST' Denial of Service

Assigner: VulnCheck
Reserved: 01.02.2026 Published: 03.02.2026 Updated: 04.02.2026

Konica Minolta FTP Utility 1.0 contains a buffer overflow vulnerability in the LIST command that allows attackers to overwrite system registers. Attackers can send an oversized buffer of 1500 'A' characters to crash the FTP server and potentially execute unauthorized code.

Metrics

CVSS Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
CVSS Score: 8.7

Product Status

Vendor Konica Minolta
Product FTP Utility
Versions
  • Version 1.0 is affected

Credits

  • Alvaro J. Gene (Socket_0x03) finder

References

Problem Types

  • Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE