CVE-2020-8635

HIGH

Wing FTP Server <6.2.3 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2020-8635. PoCs published by X1cT34m, Al1ex.

AI-analyzed exploit summary This Python script exploits CVE-2020-8635, a privilege escalation vulnerability in Wing FTP Server 6.2.3. It forges an FTP user account with full permissions via SSH access and then escalates privileges by editing /etc/shadow through the HTTP interface.

Description

Wing FTP Server v6.2.3 for Linux, macOS, and Solaris sets insecure permissions on installation directories and configuration files. This allows local users to arbitrarily create FTP users with full privileges, and escalate privileges within the operating system by modifying system files.

Exploits (2)

github WORKING POC 4 stars

by X1cT34m · cpoc

https://github.com/X1cT34m/CVE-and-PoC/tree/main/2020/CVE-2020-8635

View Code ZIP pw:eip

This Python script exploits CVE-2020-8635, a privilege escalation vulnerability in Wing FTP Server 6.2.3. It forges an FTP user account with full permissions via SSH access and then escalates privileges by editing /etc/shadow through the HTTP interface.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Wing FTP Server v6.2.3

Auth required

Prerequisites: SSH access to the target machine · valid SSH credentials

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1548 - Abuse Elevation Control Mechanism

devstral-2 · analyzed Feb 27, 2026 Full analysis →

nomisec WORKING POC 1 stars

by Al1ex · poc

https://github.com/Al1ex/CVE-2020-8635

View Code ZIP pw:eip

This repository contains a functional Python exploit for CVE-2020-8635, which targets a privilege escalation vulnerability in Wing FTP Server 6.2.3. The exploit forges an FTP user account with full permissions via SSH access and then leverages the HTTP interface to escalate privileges.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Wing FTP Server v6.2.3

Auth required

Prerequisites: SSH access to the target machine · Valid SSH credentials

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit, Third Party Advisory x_refsource_misc

https://www.hooperlabs.xyz/disclosures/cve-2020-8635.php

Scores

CVSS v3 7.8

EPSS 0.0365

EPSS Percentile 88.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-732

Status published

Products (1)

wftpserver/wing_ftp_server 6.2.3 (3 CPE variants)

Published Mar 07, 2020

Tracked Since Feb 18, 2026