CVE-2006-6563

This exploit targets a buffer overflow vulnerability in ProFTPd's ftpdctl utility due to an unsafe strncpy call in the pr_ctrls_connect function. It provides two exploitation methods: environment-based and ret-to-libc, both leading to local privilege escalation via shellcode execution.

This exploit targets a buffer overflow in ProFTPD v1.3.0/1.3.0a via the controls feature, binding a root shell on port 31337. It requires the server to be compiled with --enable-ctrls and local user access to the Unix socket.

This exploit targets a buffer overflow in ProFTPD 1.3.0/1.3.0a via the Controls feature, binding a root shell on port 31337. It requires ProFTPD to be compiled with --enable-ctrls and local user access to the Unix socket.

This exploit targets a buffer overflow in ProFTPD 1.3.0a via a maliciously crafted payload sent over a Unix domain socket. It leverages a known stack layout and a trampoline to execute shellcode, though the shellcode itself is benign (int 3 instructions).