EIP-2026-118474
PRE-CVEEasy FTP 1.7.0.11 - 'NLST' / 'NLST -al' / 'APPE' / 'RETR' / 'SIZE' / 'XCWD' Remote Buffer Overflow
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-118474. PoCs published by Rabih Mohsen.
AI-analyzed exploit summary This exploit demonstrates a remote buffer overflow in Easy FTP Server v1.7.0.11 via multiple commands (NLST, NLST -al, APPE, RETR, SIZE, XCWD). It uses a Metasploit-generated shellcode to execute calc.exe, leveraging a CALL EDI instruction in user32.dll for EIP control.
Description
Easy FTP 1.7.0.11 - 'NLST' / 'NLST -al' / 'APPE' / 'RETR' / 'SIZE' / 'XCWD' Remote Buffer Overflow
Exploits (1)
This exploit demonstrates a remote buffer overflow in Easy FTP Server v1.7.0.11 via multiple commands (NLST, NLST -al, APPE, RETR, SIZE, XCWD). It uses a Metasploit-generated shellcode to execute calc.exe, leveraging a CALL EDI instruction in user32.dll for EIP control.