Exploitation Summary
EIP tracks 1 public exploit for CVE-2009-3947. PoCs published by otokoyama.
AI-analyzed exploit summary This exploit demonstrates a buffer overflow vulnerability in Tandberg MXP F7.0 by sending a 251-character string of spaces to the FTP service, causing a denial of service (DoS). The PoC crashes the FtpCt00 process due to improper handling of long usernames in log files.
Description
Buffer overflow in the FTP service on the Tandberg MXP F7.0 allows remote attackers to cause a denial of service (process crash or device reboot) or possibly execute arbitrary code via a long USER command, as demonstrated by a command ending with many space characters.
Exploits (1)
This exploit demonstrates a buffer overflow vulnerability in Tandberg MXP F7.0 by sending a 251-character string of spaces to the FTP service, causing a denial of service (DoS). The PoC crashes the FtpCt00 process due to improper handling of long usernames in log files.