CVE-2003-0831

ProFTPD <1.2.9rc2 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2003-0831. PoCs published by Haggis, bkbll, netris.

AI-analyzed exploit summary This exploit targets a stack-based buffer overflow in ProFTPD 1.2.7 to 1.2.9rc2, leveraging a brute-force approach to overwrite the return address and execute shellcode that binds a shell to port 4660. It includes chroot breaking and requires anonymous or valid FTP credentials.

Description

ProFTPD 1.2.7 through 1.2.9rc2 does not properly translate newline characters when transferring files in ASCII mode, which allows remote attackers to execute arbitrary code via a buffer overflow using certain files.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Haggis · cremotelinux
https://www.exploit-db.com/exploits/110

This exploit targets a stack-based buffer overflow in ProFTPD 1.2.7 to 1.2.9rc2, leveraging a brute-force approach to overwrite the return address and execute shellcode that binds a shell to port 4660. It includes chroot breaking and requires anonymous or valid FTP credentials.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Racy
Target: ProFTPD 1.2.7 - 1.2.9rc2
Auth required
Prerequisites: Network access to FTP service · Anonymous or valid FTP credentials · Target stack address within brute-force range
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by bkbll · cremotelinux
https://www.exploit-db.com/exploits/107

This exploit targets a buffer overflow vulnerability in ProFTPD 1.2.7/1.2.9rc2 via the _xlate_ascii_write function. It includes shellcode for both bind and connect-back shells, demonstrating remote code execution (RCE) by overflowing the return address.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: ProFTPD 1.2.7/1.2.9rc2
Auth required
Prerequisites: Valid FTP credentials · Network access to the target · Target running vulnerable ProFTPD version
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by netris · cdoslinux
https://www.exploit-db.com/exploits/23170

This exploit targets a buffer overflow vulnerability in ProFTPD versions 1.2.7 to 1.2.8. It leverages a malformed file upload followed by a download in ASCII mode to execute arbitrary code in the context of the FTP server.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: ProFTPD 1.2.7-1.2.8
Auth required
Prerequisites: Valid FTP credentials with upload access · ProFTPD server running a vulnerable version
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (9)

Core 9
Core References
Various Sources third-party-advisory x_refsource_iss
http://xforce.iss.net/xforce/alerts/id/154
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/12200
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/107/
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=106606885611269&w=2
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/405348
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/9829
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=106441655617816&w=2
Vendor Advisory vendor-advisory x_refsource_mandrake
http://www.mandriva.com/security/advisories?name=MDKSA-2003:095

Scores

EPSS 0.5512
EPSS Percentile 98.9%

Details

CWE
CWE-119
Status published
Products (9)
proftpd_project/proftpd 1.2.7
proftpd_project/proftpd 1.2.7_rc1
proftpd_project/proftpd 1.2.7_rc2
proftpd_project/proftpd 1.2.7_rc3
proftpd_project/proftpd 1.2.8
proftpd_project/proftpd 1.2.8_rc1
proftpd_project/proftpd 1.2.8_rc2
proftpd_project/proftpd 1.2.9_rc1
proftpd_project/proftpd 1.2.9_rc2
Published Nov 17, 2003
Tracked Since Feb 18, 2026