LeapFTP Client LSQ File Remote Buffer Overflow Vulnerability

info
discussion
exploit
solution
references

LeapFTP Client LSQ File Remote Buffer Overflow Vulnerability

LeapFTP client is prone to a remote buffer overflow vulnerability.

The issue arises when the client handles a malformed LeapFTP Site Queue (.lsq) file.

A remote attacker may gain unauthorized access in the context of the user running the application.

LeapFTP versions prior to 2.7.6.612 are affected by this vulnerability.