EIP-2026-115312

PRE-CVE

FTPShell Server 6.36 - '.csv' Local Denial of Service

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-115312. PoCs published by sultan albalawi.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in FTPShell Server 6.36 by crafting a malicious CSV file. The payload triggers a crash by overwriting the EIP with a JMP instruction address (0x00F39658) to achieve denial-of-service (DoS).

Description

FTPShell Server 6.36 - '.csv' Local Denial of Service

Exploits (1)

exploitdb WORKING POC VERIFIED

by sultan albalawi · pythondoswindows

https://www.exploit-db.com/exploits/40965

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in FTPShell Server 6.36 by crafting a malicious CSV file. The payload triggers a crash by overwriting the EIP with a JMP instruction address (0x00F39658) to achieve denial-of-service (DoS).

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: FTPShell Server 6.36

No auth needed

Prerequisites: Access to import a CSV file into FTPShell Server

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026