CVE-2005-3524

linux-ftpd-ssl 0.17 - Remote Code Execution via Long Directory Name XPWD Command

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-3524. PoCs published by kingcope.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in linux-ftpd-ssl 0.17 via the AUTH SSL command, leading to remote code execution with root privileges. It uses a bind shell payload and brute-forces stack addresses to achieve exploitation.

Description

Buffer overflow in the SSL-ready version of linux-ftpd (linux-ftpd-ssl) 0.17 allows remote attackers to execute arbitrary code by creating a long directory name, then executing the XPWD command.

Exploits (1)

exploitdb WORKING POC VERIFIED

by kingcope · cremotelinux

https://www.exploit-db.com/exploits/1295

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in linux-ftpd-ssl 0.17 via the AUTH SSL command, leading to remote code execution with root privileges. It uses a bind shell payload and brute-forces stack addresses to achieve exploitation.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: linux-ftpd-ssl 0.17

Auth required

Prerequisites: Network access to the FTP service · Valid FTP credentials · Target running linux-ftpd-ssl 0.17

MITRE ATT&CK