CVE-2024-48208

HIGH NUCLEI

Pure-FTPd < 1.0.52 - Buffer Overflow

Title source: nuclei
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-48208. PoCs published by rohilchaudhry. A Nuclei detection template is also available.

AI-analyzed exploit summary This repository contains a working PoC for CVE-2024-48208, an out-of-bounds (OOB) read vulnerability in Pure-FTPd's `domlsd()` function. The exploit leverages the OOB read to escape chroot restrictions and bypass access controls by manipulating the `replybuf` and creating malicious symlinks.

Description

pure-ftpd before 1.0.52 is vulnerable to Buffer Overflow. There is an out of bounds read in the domlsd() function of the ls.c file.

Exploits (1)

nomisec WORKING POC 6 stars
by rohilchaudhry · poc
https://github.com/rohilchaudhry/CVE-2024-48208

This repository contains a working PoC for CVE-2024-48208, an out-of-bounds (OOB) read vulnerability in Pure-FTPd's `domlsd()` function. The exploit leverages the OOB read to escape chroot restrictions and bypass access controls by manipulating the `replybuf` and creating malicious symlinks.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target: Pure-FTPd (version not explicitly specified, but likely affects versions prior to the fix in PR #176)
Auth required
Prerequisites: Access to a vulnerable Pure-FTPd server · Valid FTP credentials · Ability to create symlinks on the server
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

Pure-FTPd < 1.0.52 - Buffer Overflow
HIGHVERIFIEDby pussycat0x
Shodan: product:"Pure-FTPd"

References (1)

Core 1
Core References

Scores

CVSS v3 8.6
EPSS 0.0151
EPSS Percentile 71.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact partial

Details

CWE
CWE-125
Status published
Products (1)
pureftpd/pure-ftpd < 1.0.52
Published Oct 24, 2024
Tracked Since Feb 18, 2026