This is a buffer overflow PoC for Core FTP Server v1.2, exploiting a vulnerability in the 'Log filename' field to overwrite EIP and execute arbitrary shellcode (calc.exe). The payload includes a JMP ESP instruction and alpha-mixed encoded shellcode.
Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target:Core FTP Server v1.2
No auth needed
Prerequisites:Core FTP Server v1.2 installed on Windows 7 Professional SP1 x86 · Access to the 'Logging options' configuration panel