CVE-2004-2366

GlobalSCAPE Secure FTP Server <2.0 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-2366. PoCs published by storm.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Secure FTP Server via the SITE command. It sends a maliciously crafted payload of 252 bytes to trigger the overflow, potentially leading to remote code execution or denial of service.

Description

Buffer overflow in GlobalSCAPE Secure FTP Server 2.0 B03.11.2004.2 allows remote attackers to cause a denial of service (crash) via a SITE command with a long argument.

Exploits (1)

exploitdb WORKING POC VERIFIED
by storm · perldoswindows
https://www.exploit-db.com/exploits/23839

This exploit targets a buffer overflow vulnerability in Secure FTP Server via the SITE command. It sends a maliciously crafted payload of 252 bytes to trigger the overflow, potentially leading to remote code execution or denial of service.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Secure FTP Server version 2.0 Build 03.11.2004.2
Auth required
Prerequisites: Network access to the target FTP server · FTP server running on port 2117
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Exploit, Vendor Advisory x_refsource_misc
http://www.securiteam.com/windowsntfocus/5KP0C20CAC.html
Various Sources x_refsource_confirm
http://www.cuteftp.com/gsftps/history.asp
Exploit, Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/9904
Patch, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/11159/
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15511

Scores

EPSS 0.0381
EPSS Percentile 88.7%

Details

Status published
Products (1)
globalscape/secure_ftp_server 2.0_build2004-03-11
Published Dec 31, 2004
Tracked Since Feb 18, 2026