CVE-2015-7768

Konica Minolta FTP Utility 1.0 - RCE

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2015-7768. PoCs published by TOMIWA, Metasploit, Shankar Damodaran, including Metasploit module exploits/windows/ftp/kmftp_utility_cwd.

AI-analyzed exploit summary This exploit targets a SEH overflow vulnerability in Konica Minolta FTP Utility 1.00 via a malformed CWD command, leading to remote code execution. It uses a reverse shell payload generated by msfvenom to achieve RCE on the target system.

Description

Buffer overflow in Konica Minolta FTP Utility 1.0 allows remote attackers to execute arbitrary code via a long CWD command.

Exploits (3)

exploitdb WORKING POC VERIFIED
by TOMIWA · pythonremotewindows
https://www.exploit-db.com/exploits/39215

This exploit targets a SEH overflow vulnerability in Konica Minolta FTP Utility 1.00 via a malformed CWD command, leading to remote code execution. It uses a reverse shell payload generated by msfvenom to achieve RCE on the target system.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Konica Minolta FTP Utility v1.0
Auth required
Prerequisites: Network access to the target FTP service · Valid credentials for authentication
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/38254

This Metasploit module exploits an SEH overflow in Konica Minolta FTP Utility 1.00 via a malformed 'CWD' command, allowing remote code execution. It targets Windows 7 SP1 x86 with a crafted buffer to overwrite the SEH record.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Konica Minolta FTP Utility 1.00
No auth needed
Prerequisites: Network access to the vulnerable FTP server · Target system running Windows 7 SP1 x86
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
by Shankar Damodaran · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/ftp/kmftp_utility_cwd.rb

This Metasploit module exploits an SEH overflow in Konica Minolta FTP Utility 1.00 via a maliciously crafted CWD command. It leverages a known CVE (2015-7768) to achieve remote code execution on Windows 7 SP1 x86 systems.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Konica Minolta FTP Utility 1.00
No auth needed
Prerequisites: Network access to the target FTP server · Target running Konica Minolta FTP Utility 1.00
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Scores

EPSS 0.6321
EPSS Percentile 99.1%

Details

CWE
CWE-119
Status published
Products (1)
konicaminolta/ftp_utility 1.0
Published Oct 09, 2015
Tracked Since Feb 18, 2026