CVE-2001-0702

Cerberus FTP Server <= 1.5 - Denial of Service and Possible Remote Code Execution via Long Input

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-0702. PoCs published by Cartel.

AI-analyzed exploit summary The exploit describes a buffer overflow vulnerability in Cerberus FTP Server during authentication. Excessive input in username or password fields (300+ characters) causes a crash, potentially allowing arbitrary code execution or DoS.

Description

Cerberus FTP 1.5 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long (1) username, (2) password, or (3) PASV command.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Cartel · textdoswindows
https://www.exploit-db.com/exploits/20946

The exploit describes a buffer overflow vulnerability in Cerberus FTP Server during authentication. Excessive input in username or password fields (300+ characters) causes a crash, potentially allowing arbitrary code execution or DoS.

Classification
Writeup 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Cerberus FTP Server
No auth needed
Prerequisites: Network access to the FTP server
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Various Sources mailing-list x_refsource_bugtraq
http://archive.cert.uni-stuttgart.de/archive/bugtraq/2001/07/msg00070.html
Exploit, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/2901
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/6728
Exploit, Vendor Advisory mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/192655

Scores

EPSS 0.0977
EPSS Percentile 95.0%

Details

Status published
Products (7)
grant_averett/ceberus_ftp_server 1.0
grant_averett/ceberus_ftp_server 1.1
grant_averett/ceberus_ftp_server 1.01
grant_averett/ceberus_ftp_server 1.2
grant_averett/ceberus_ftp_server 1.3
grant_averett/ceberus_ftp_server 1.5
grant_averett/ceberus_ftp_server 1.22
Published Sep 20, 2001
Tracked Since Feb 18, 2026