EIP-2026-116248

PRE-CVE

SmallFTPd 1.0.3 - 'mkd' Denial of Service

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-116248. PoCs published by ScrR1pTK1dd13.

AI-analyzed exploit summary This exploit targets a denial-of-service (DoS) vulnerability in smallftpd 1.0.3 by sending an overly long MKD command to crash the FTP server. It requires authentication and leverages the FTP protocol to trigger the vulnerability.

Description

SmallFTPd 1.0.3 - 'mkd' Denial of Service

Exploits (1)

exploitdb WORKING POC VERIFIED

by ScrR1pTK1dd13 · pythondoswindows

https://www.exploit-db.com/exploits/40632

View Code ZIP pw:eip

This exploit targets a denial-of-service (DoS) vulnerability in smallftpd 1.0.3 by sending an overly long MKD command to crash the FTP server. It requires authentication and leverages the FTP protocol to trigger the vulnerability.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: smallftpd 1.0.3

Auth required

Prerequisites: FTP server IP · valid username and password

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026