EIP-2026-119115

PRE-CVE

Sasser Worm avserve - FTP PORT Buffer Overflow (Metasploit)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-119115. PoCs published by Metasploit.

AI-analyzed exploit summary This is a functional Metasploit exploit module targeting a buffer overflow vulnerability in the Sasser worm's FTP server component via an overly long PORT command. It includes payload delivery and handler setup for remote code execution.

Description

Sasser Worm avserve - FTP PORT Buffer Overflow (Metasploit)

Exploits (1)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/16727

View Code ZIP pw:eip

This is a functional Metasploit exploit module targeting a buffer overflow vulnerability in the Sasser worm's FTP server component via an overly long PORT command. It includes payload delivery and handler setup for remote code execution.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Sasser Worm avserve FTP Server

No auth needed

Prerequisites: Network access to the vulnerable FTP server on port 5554

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026