EIP-2026-116611

PRE-CVE

XM Easy Personal FTP Server 5.8.0 - 'HELP' Remote Denial of Service

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-116611. PoCs published by Pawan Lal.

AI-analyzed exploit summary This exploit triggers a denial-of-service (DoS) in XM Easy Personal FTP Server 5.8.0 by sending an oversized buffer (4500 'A' characters) via the HELP command after authentication. The crash occurs due to improper handling of the input length.

Description

XM Easy Personal FTP Server 5.8.0 - 'HELP' Remote Denial of Service

Exploits (1)

exploitdb WORKING POC

by Pawan Lal · pythondoswindows

https://www.exploit-db.com/exploits/39470

View Code ZIP pw:eip

This exploit triggers a denial-of-service (DoS) in XM Easy Personal FTP Server 5.8.0 by sending an oversized buffer (4500 'A' characters) via the HELP command after authentication. The crash occurs due to improper handling of the input length.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: XM Easy Personal FTP Server 5.8.0

Auth required

Prerequisites: Network access to FTP server (port 21) · Valid FTP credentials

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026