CVE-2007-1080

TurboFTP <5.30 Build 572 - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-1080. PoCs published by Marsu.

AI-analyzed exploit summary This exploit targets TurboFTP 5.30 Build 572 with multiple DoS vulnerabilities, including handling responses with excessive newline characters and heap overflows triggered by long filenames or CWD commands. It simulates an FTP server to trigger the vulnerabilities when a client connects.

Description

Multiple heap-based buffer overflows in TurboFTP 5.30 Build 572 allow remote servers to cause a denial of service via (1) long filename in a response to a LIST command, and (2) a long response to a CWD command.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Marsu · c++doswindows

https://www.exploit-db.com/exploits/3341

View Code ZIP pw:eip

This exploit targets TurboFTP 5.30 Build 572 with multiple DoS vulnerabilities, including handling responses with excessive newline characters and heap overflows triggered by long filenames or CWD commands. It simulates an FTP server to trigger the vulnerabilities when a client connects.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: TurboFTP 5.30 Build 572

No auth needed

Prerequisites: Network access to the target · Target must initiate an FTP connection to the attacker's server

MITRE ATT&CK