CVE-2003-0203

moxftp 2.2 - Remote Code Execution via Long FTP Banner

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2003-0203. PoCs published by Knud Erik Hojgaard.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in moxftp, cftp, and Iglooftp FTP clients by sending an overly long FTP banner or directory listing. It includes shellcode for port binding or connect-back, tailored for specific FreeBSD versions.

Description

Buffer overflow in moxftp 2.2 and earlier allows remote malicious FTP servers to execute arbitrary code via a long FTP banner.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Knud Erik Hojgaard · perlremotelinux

https://www.exploit-db.com/exploits/22278

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in moxftp, cftp, and Iglooftp FTP clients by sending an overly long FTP banner or directory listing. It includes shellcode for port binding or connect-back, tailored for specific FreeBSD versions.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: moxftp 2.2, cftp 0.12, Iglooftp 0.6.1

No auth needed

Prerequisites: Victim must connect to a malicious FTP server · Specific FreeBSD versions (4.7 or 5.0)

MITRE ATT&CK