CVE-2004-0695

4D WebSTAR <5.3.2 - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 3 public exploits for CVE-2004-0695. PoCs published by Metasploit, ddz, ddz, hdm, including Metasploit module exploits/osx/ftp/webstar_ftp_user.

AI-analyzed exploit summary This exploit targets a stack buffer overflow in the WebSTAR FTP server's logging routine, achieving remote code execution via a series of hops through the System library. It leverages a crafted USER command to overflow the buffer and execute payloads on Mac OS X 10.3.4-10.3.6.

Description

Stack-based buffer overflow in the FTP service for 4D WebSTAR 5.3.2 and earlier allows remote attackers to execute arbitrary code via a long FTP command.

Exploits (3)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremoteosx

https://www.exploit-db.com/exploits/16872

View Code ZIP pw:eip

This exploit targets a stack buffer overflow in the WebSTAR FTP server's logging routine, achieving remote code execution via a series of hops through the System library. It leverages a crafted USER command to overflow the buffer and execute payloads on Mac OS X 10.3.4-10.3.6.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: WebSTAR FTP Server (Mac OS X 10.3.4-10.3.6)

No auth needed

Prerequisites: Network access to the WebSTAR FTP server · Target running Mac OS X 10.3.4-10.3.6

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by ddz · rubyremoteosx

https://www.exploit-db.com/exploits/9928

View Code ZIP pw:eip

This exploit targets a stack overflow in the WebSTAR FTP server's logging routine, achieving reliable code execution via a series of hops through the System library. It leverages a buffer overflow in the USER command to execute arbitrary payloads on vulnerable Mac OS X systems.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: WebSTAR FTP Server on Mac OS X 10.3.4-10.3.6

No auth needed

Prerequisites: Network access to the vulnerable FTP server · Knowledge of the target's hostname or IP resolution

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

metasploit WORKING POC NORMAL

by ddz, hdm · rubypocosx

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/osx/ftp/webstar_ftp_user.rb

View Code ZIP pw:eip

This Metasploit module exploits a stack buffer overflow in WebSTAR FTP server's logging routine via a crafted USER command. It achieves reliable code execution on Mac OS X 10.3.4-10.3.6 by chaining multiple return addresses in the System library.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Complex

Reliability

Reliable

Target: WebSTAR FTP Server (Mac OS X 10.3.4-10.3.6)

No auth needed

Prerequisites: Network access to the FTP server · Target running vulnerable WebSTAR FTP Server version

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Vendor Advisory vendor-advisory x_refsource_atstake

http://www.atstake.com/research/advisories/2004/a071304-1.txt

Various Sources x_refsource_misc

ftp://ftp.4d.com/ACI_PRODUCT_REFERENCE_LIBRARY/4D_PRODUCT_DOCUMENTATION/PDF_Docs_by_4D_Product_A-Z/4D_WebSTAR/Software_Change_History.txt

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/16686

Scores

EPSS 0.3819

EPSS Percentile 98.4%

Details

Status published

Products (9)

4d/webstar 4.0

4d/webstar 5.2

4d/webstar 5.2.1

4d/webstar 5.2.2

4d/webstar 5.2.3

4d/webstar 5.2.4

4d/webstar 5.3

4d/webstar 5.3.1

4d/webstar 5.3.2

Published Jul 27, 2004

Tracked Since Feb 18, 2026