CVE-2005-1371

BulletProof FTP Server 2.4.0.31 - Privilege Escalation

Title source: llm

Description

BPFTPServer service in BulletProof FTP Server 2.4.0.31 does not properly drop privileges before opening files through the Help menu, which allows local users to gain privileges.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Jerome Athias · c++localwindows

https://www.exploit-db.com/exploits/971

View Code ZIP pw:eip

References (6)

[Mailing List] http://marc.info/?l=bugtraq&m=111464474828477&w=2

[Exploit] http://www.securityfocus.com/bid/13410

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/20301

[Third Party Advisory, VDB Entry] http://www.osvdb.org/15898

[Third Party Advisory] http://secunia.com/advisories/15152

[Third Party Advisory] http://www.vupen.com/english/advisories/2005/0419

Scores

EPSS 0.0019

EPSS Percentile 41.0%

Details

Status published

Products (1)

bulletproof/bulletproof_ftp_server 2.4.0.31

Published May 03, 2005

Tracked Since Feb 18, 2026