CVE-2011-5166

Elif Keir Knftp - Memory Corruption

Title source: rule

Description

Multiple stack-based buffer overflows in KnFTP 1.0.0 allow remote attackers to execute arbitrary code via a long string to the (1) USER, (2) PASS, (3) REIN, (4) QUIT, (5) PORT, (6) PASV, (7) TYPE, (8) STRU, (9) MODE, (10) RETR, (11) STOR, (12) APPE, (13) ALLO, (14) REST, (15) RNFR, (16) RNTO, (17) ABOR, (18) DELE, (19) CWD, (20) LIST, (21) NLST, (22) SITE, (23) STST, (24) HELP, (25) NOOP, (26) MKD, (27) RMD, (28) PWD, (29) CDUP, (30) STOU, (31) SNMT, (32) SYST, and (33) XPWD commands.

Exploits (4)

exploitdb WORKING POC VERIFIED

by mr.pr0n · perlremotewindows

https://www.exploit-db.com/exploits/17870

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by loneferret · pythondoswindows

https://www.exploit-db.com/exploits/17856

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by blake · pythonremotewindows

https://www.exploit-db.com/exploits/17819

View Code ZIP pw:eip

exploitdb WORKING POC

by pasta · rubyremotewindows

https://www.exploit-db.com/exploits/18089

View Code ZIP pw:eip

References (8)

[Exploit] http://archives.neohapsis.com/archives/bugtraq/2011-09/0015.html

[Vendor Advisory] http://secunia.com/advisories/45907

[Exploit] http://www.exploit-db.com/exploits/17819

[Exploit] http://www.exploit-db.com/exploits/17856

[Exploit] http://www.exploit-db.com/exploits/17870

[Exploit] http://www.exploit-db.com/exploits/18089

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/69557

[Third Party Advisory, VDB Entry] http://www.osvdb.org/75147

Scores

EPSS 0.3324

EPSS Percentile 96.9%

Details

CWE

CWE-119

Status published

Products (1)

elif_keir/knftp 1.0.0

Published Sep 15, 2012

Tracked Since Feb 18, 2026