CVE-2009-4753

Addonics NASU2FW41 - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-4753. PoCs published by h00die.

AI-analyzed exploit summary This exploit targets a denial-of-service (DoS) vulnerability in the Addonics NAS Adapter FTP server by sending oversized commands (rmdir, delete, or rename) to crash the service. It requires authentication and fuzzes the input to trigger a stack overflow.

Description

Multiple buffer overflows in the FTP server on the Addonics NAS Adapter NASU2FW41 with loader 1.17 allow remote attackers to cause a denial of service (TCP/IP outage) via long arguments to the (1) XRMD, (2) delete, (3) RNFR, or (4) RNTO command.

Exploits (1)

exploitdb WORKING POC VERIFIED

by h00die · pythondoshardware

https://www.exploit-db.com/exploits/8584

View Code ZIP pw:eip

This exploit targets a denial-of-service (DoS) vulnerability in the Addonics NAS Adapter FTP server by sending oversized commands (rmdir, delete, or rename) to crash the service. It requires authentication and fuzzes the input to trigger a stack overflow.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Addonics NAS Adapter FTP server (NASU2FW41 Loader 1.17)

Auth required

Prerequisites: Network access to the FTP server · Valid FTP credentials

MITRE ATT&CK