CVE-2004-1626

Ability Server 2.34 - Remote Code Execution via Long STOR Command

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2004-1626. PoCs published by NoPh0BiA, muts, muts, Dark Eagle, Peter Osterberg, including Metasploit module exploits/windows/ftp/ability_server_stor.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Ability Server 2.34 via the FTP STOR command. It sends a crafted payload containing shellcode to achieve remote code execution, resulting in a reverse shell connection back to the attacker.

Description

Buffer overflow in Ability Server 2.34, and possibly other versions, allows remote attackers to execute arbitrary code via a long STOR command.

Exploits (3)

exploitdb WORKING POC VERIFIED
by NoPh0BiA · cremotewindows
https://www.exploit-db.com/exploits/618

This exploit targets a buffer overflow vulnerability in Ability Server 2.34 via the FTP STOR command. It sends a crafted payload containing shellcode to achieve remote code execution, resulting in a reverse shell connection back to the attacker.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Ability Server 2.34
Auth required
Prerequisites: Network access to the target FTP server · Valid FTP credentials (USER/PASS)
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by muts · pythonremotewindows
https://www.exploit-db.com/exploits/588

This exploit targets a buffer overflow vulnerability in Ability Server 2.34 FTP STOR command. It sends a crafted buffer with a return address and shellcode to achieve remote code execution on Windows XP SP2.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Ability Server 2.34
Auth required
Prerequisites: Network access to the FTP server · Valid FTP credentials
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
by muts, Dark Eagle, Peter Osterberg · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/ftp/ability_server_stor.rb

This Metasploit module exploits a stack-based buffer overflow in Ability Server 2.34 via the 'STOR' command, allowing remote code execution. It includes targets for Windows XP SP2 and SP3, leveraging JMP ESP instructions for payload delivery.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Ability Server 2.34 (and possibly 2.25, 2.32)
Auth required
Prerequisites: Network access to FTP service · Valid FTP credentials
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/17823
Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/857846
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=109850947508816&w=2
Exploit, Vendor Advisory vdb-entry x_refsource_osvdb
http://www.osvdb.org/11030
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/12941
Exploit, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/11508

Scores

EPSS 0.7336
EPSS Percentile 98.8%

Details

Status published
Products (3)
code-crafters/ability_server 2.2.5
code-crafters/ability_server 2.3.2
code-crafters/ability_server 2.3.4
Published Oct 22, 2004
Tracked Since Feb 18, 2026