CVE-2005-2373

Whitsoft Development Slimftpd - Buffer Overflow

Title source: rule

Description

Buffer overflow in SlimFTPd 3.15 and 3.16 allows remote authenticated users to execute arbitrary code via a long directory name to (1) LIST, (2) DELE or (3) RNFR commands.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/16729

View Code ZIP pw:eip

metasploit WORKING POC GREAT

rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/ftp/slimftpd_list_concat.rb

View Code ZIP pw:eip

References (4)

[URL Repurposed] http://www.whitsoftdev.com/slimftpd/

[Third Party Advisory, VDB Entry] http://securitytracker.com/id?1014542

[Third Party Advisory] http://secunia.com/advisories/16177

[Mailing List] http://marc.info/?l=bugtraq&m=112196537312610&w=2

Scores

EPSS 0.3741

EPSS Percentile 97.2%

Details

Status published

Products (2)

whitsoft_development/slimftpd 3.15

whitsoft_development/slimftpd 3.16

Published Jul 26, 2005

Tracked Since Feb 18, 2026