CVE-2010-2620

This exploit leverages an authentication bypass and directory traversal vulnerability in Open&Compact FTP Server <= 1.2 to retrieve the SAM file for offline cracking. It connects to the FTP server without authentication and downloads the SAM file from the Windows repair directory.

This Metasploit module exploits an authentication bypass and arbitrary file upload vulnerability in Open&Compact FTP Server 1.2 to achieve remote code execution by uploading a malicious executable and a MOF file to trigger WMI execution.

This exploit demonstrates an authentication bypass vulnerability in Open&Compact FTP Server <= 1.2, allowing unauthenticated command execution such as file listing and retrieval. The PoC connects to the FTP server without credentials and executes commands directly.

This Metasploit module exploits an authentication bypass and arbitrary file upload vulnerability in Open&Compact FTP server 1.2 to achieve remote code execution on Windows systems before Vista. It uploads a malicious executable and a MOF file to trigger WMI execution of the payload.