CVE-2009-0543

ProFTPD Server <1.3.1 - Auth Bypass

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-0543. PoCs published by gat3way.

AI-analyzed exploit summary This writeup describes an SQL injection vulnerability in ProFTPD's SQL authentication mechanism. The exploit leverages improper handling of the '%' character to bypass authentication by injecting a malicious SQL query into the username field.

Description

ProFTPD Server 1.3.1, with NLS support enabled, allows remote attackers to bypass SQL injection protection mechanisms via invalid, encoded multibyte characters, which are not properly handled in (1) mod_sql_mysql and (2) mod_sql_postgres.

Exploits (1)

exploitdb WRITEUP VERIFIED

by gat3way · textremotemultiple

https://www.exploit-db.com/exploits/8037

View Code ZIP pw:eip

This writeup describes an SQL injection vulnerability in ProFTPD's SQL authentication mechanism. The exploit leverages improper handling of the '%' character to bypass authentication by injecting a malicious SQL query into the username field.

Classification

Writeup 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: ProFTPD (version not specified)

No auth needed

Prerequisites: ProFTPD with SQL authentication enabled

MITRE ATT&CK