CVE-1999-1510

Bisonware FTP Server < 4.1 - Buffer Overflow via Long USER LIST or CWD Commands

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-1999-1510. PoCs published by SecPod Research, localh0t, Arne Vidstrom, including Metasploit module exploits/windows/ftp/bison_ftp_bof.

AI-analyzed exploit summary This is a Metasploit module exploiting a buffer overflow vulnerability in BisonFTP Server <= v3.5. It sends a crafted payload to trigger a remote code execution via a malformed FTP command.

Description

Buffer overflows in Bisonware FTP server prior to 4.1 allow remote attackers to cause a denial of service, and possibly execute arbitrary commands, via long (1) USER, (2) LIST, or (3) CWD commands.

Exploits (4)

exploitdb WORKING POC VERIFIED
by SecPod Research · rubyremotewindows
https://www.exploit-db.com/exploits/17810

This is a Metasploit module exploiting a buffer overflow vulnerability in BisonFTP Server <= v3.5. It sends a crafted payload to trigger a remote code execution via a malformed FTP command.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: BisonFTP Server <= v3.5
No auth needed
Prerequisites: Network access to the target FTP server · Target running BisonFTP Server <= v3.5
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by localh0t · pythonremotewindows
https://www.exploit-db.com/exploits/17649

This exploit targets a buffer overflow vulnerability in BisonFTP Server <=v3.5, delivering a reverse shell payload. It uses a NOP sled and a JMP EDX instruction to redirect execution to the shellcode.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: BisonFTP Server <=v3.5
No auth needed
Prerequisites: Network access to the target FTP server · Target running Windows XP SP3 Spanish (or similar vulnerable configuration)
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Arne Vidstrom · cremotelinux
https://www.exploit-db.com/exploits/19219

This exploit targets multiple vulnerabilities in BisonWare FTP Server 3.5, including buffer overflows in commands like USER and PASS, leading to a remote denial-of-service (DoS). It sends oversized strings to crash the server without requiring authentication.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: BisonWare FTP Server 3.5
No auth needed
Prerequisites: Network access to the target FTP server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
by localh0t, veerendragg @ SecPod, Jay Turla · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/ftp/bison_ftp_bof.rb

This Metasploit module exploits a buffer overflow vulnerability in BisonWare BisonFTP Server 3.5 by sending a crafted payload to trigger remote code execution. The exploit leverages a known return address and offsets to achieve reliable exploitation.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: BisonWare BisonFTP Server 3.5
No auth needed
Prerequisites: Network access to the vulnerable FTP server · BisonFTP Server 3.5 running on Windows XP SP3 EN
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Mailing List mailing-list x_refsource_ntbugtraq
http://marc.info/?l=ntbugtraq&m=92697301706956&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/3234

Scores

EPSS 0.6709
EPSS Percentile 99.2%

Details

Status published
Products (1)
bisonware/bisonware_ftp_server < 4.1
Published May 17, 1999
Tracked Since Feb 18, 2026