CVE-2014-125114

HIGH

i-Ftp 2.20 - Stack-based Buffer Overflow via Schedule.xml Time Attribute

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2014-125114. PoCs published by Metasploit, metacom, metacom, Gabor Seljan, including Metasploit module exploits/windows/fileformat/iftp_schedule_bof.

AI-analyzed exploit summary This Metasploit module exploits a stack-based buffer overflow in i-FTP v2.20 via a maliciously crafted Schedule.xml file. It leverages a long 'Time' value to trigger the overflow and execute arbitrary code, targeting Windows XP SP3 with a specific return address in Lgi.dll.

Description

A stack-based buffer overflow vulnerability exists in i-Ftp version 2.20 due to improper handling of the Time attribute within Schedule.xml. By placing a specially crafted Schedule.xml file in the i-Ftp application directory, a remote attacker can trigger a buffer overflow during scheduled download parsing, potentially leading to arbitrary code execution or a crash.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubylocalwindows
https://www.exploit-db.com/exploits/35671

This Metasploit module exploits a stack-based buffer overflow in i-FTP v2.20 via a maliciously crafted Schedule.xml file. It leverages a long 'Time' value to trigger the overflow and execute arbitrary code, targeting Windows XP SP3 with a specific return address in Lgi.dll.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: i-FTP v2.20
No auth needed
Prerequisites: Victim must open the maliciously crafted Schedule.xml file in the i-FTP application
devstral-2 · analyzed Feb 18, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by metacom · pythonlocalwindows
https://www.exploit-db.com/exploits/35177

This exploit leverages a buffer overflow vulnerability in i.FTP v2.20 by crafting a malicious XML file to overwrite SEH and execute arbitrary shellcode (calc.exe). The payload is encoded using Metasploit's alpha_upper encoder to bypass bad characters.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: i.FTP v2.20 (Win32 Release)
No auth needed
Prerequisites: Victim must open the malicious Schedule.xml file in i.FTP
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
by metacom, Gabor Seljan · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/iftp_schedule_bof.rb

This Metasploit module exploits a stack-based buffer overflow in i-FTP v2.20 via a maliciously crafted Schedule.xml file. It leverages SEH overwrites and a hardcoded return address to achieve remote code execution on Windows XP SP3.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: i-FTP v2.20
No auth needed
Prerequisites: Victim must open the malicious Schedule.xml file in the i-FTP application
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Scores

CVSS v4 8.4
EPSS 0.0058
EPSS Percentile 42.9%
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-121 CWE-20
Status published
Products (1)
i-Ftp/i-Ftp 2.20
Published Jul 25, 2025
Tracked Since Feb 18, 2026