CVE-2008-4572

GuildFTPd 0.999.14 - Denial of Service and Possible Remote Code Execution via Long CWD and LIST Arguments

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2008-4572. PoCs published by dmnt, including Metasploit module auxiliary/dos/windows/ftp/guildftp_cwdlist.

AI-analyzed exploit summary This exploit triggers a heap corruption vulnerability in GuildFTPd by sending malformed CWD and LIST commands, leading to a denial-of-service (DoS) condition. The PoC demonstrates the vulnerability but does not include shellcode for remote code execution.

Description

GuildFTPd 0.999.14, and possibly other versions, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long arguments to the CWD and LIST commands, which triggers heap corruption related to an improper free call, and possibly triggering a heap-based buffer overflow.

Exploits (2)

exploitdb WORKING POC VERIFIED
by dmnt · pythondoswindows
https://www.exploit-db.com/exploits/6738

This exploit triggers a heap corruption vulnerability in GuildFTPd by sending malformed CWD and LIST commands, leading to a denial-of-service (DoS) condition. The PoC demonstrates the vulnerability but does not include shellcode for remote code execution.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: GuildFTPd v0.999.8.11/v0.999.14
Auth required
Prerequisites: Network access to the FTP server · Valid credentials (anonymous or otherwise)
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC
rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/windows/ftp/guildftp_cwdlist.rb

This Metasploit module exploits a heap corruption vulnerability in Guild FTPd versions 0.999.8.11 and 0.999.14 by sending malformed CWD and LIST commands, leading to a denial-of-service condition. It requires valid FTP credentials to execute the attack.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Guild FTPd 0.999.8.11, 0.999.14
Auth required
Prerequisites: Valid FTP credentials · Network access to the target FTP server
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/31729
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/32218
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/2794
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/6738
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/45818
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/4422

Scores

EPSS 0.7687
EPSS Percentile 99.0%

Details

CWE
CWE-119
Status published
Products (1)
guildftpd/guildftpd 0.999.14
Published Oct 15, 2008
Tracked Since Feb 18, 2026