CVE-2005-1873

Crob FTP - Buffer Overflow

Title source: rule

Description

Multiple buffer overflows in Crob FTP 3.6.1, and possibly earlier versions, allow remote attackers to execute arbitrary code via (1) an FTP command with a large string followed by the RMD command with a long string or (2) a globbing ("*") character followed by a long string.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Leon Juranic · cremotewindows

https://www.exploit-db.com/exploits/1028

View Code ZIP pw:eip

References (3)

[Various Sources] http://security.lss.hr/index.php?page=details&ID=LSS-2005-06-06

[Third Party Advisory] http://secunia.com/advisories/15585

[Exploit] http://lists.grok.org.uk/pipermail/full-disclosure/2005-June/034426.html

Scores

EPSS 0.0539

EPSS Percentile 90.1%

Details

Status published

Products (1)

crob/crob_ftp 3.6.1

Published Jun 09, 2005

Tracked Since Feb 18, 2026