EIP-2026-119494

PRE-CVE

SoftX FTP Client 3.3 - Denial of Service (PoC)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-119494. PoCs published by Cemal Cihad ÇİFTÇİ.

AI-analyzed exploit summary This Python script generates a 2500-byte buffer of 'A' characters to trigger a denial-of-service (DoS) in SoftX FTP Client 3.3 by overflowing the 'Site Label' field in the Site Manager window. The exploit creates a file 'boom.txt' containing the payload, which when pasted into the vulnerable field causes the application to crash.

Description

SoftX FTP Client 3.3 - Denial of Service (PoC)

Exploits (1)

exploitdb WORKING POC VERIFIED

by Cemal Cihad ÇİFTÇİ · pythondoswindows_x86

https://www.exploit-db.com/exploits/45455

View Code ZIP pw:eip

This Python script generates a 2500-byte buffer of 'A' characters to trigger a denial-of-service (DoS) in SoftX FTP Client 3.3 by overflowing the 'Site Label' field in the Site Manager window. The exploit creates a file 'boom.txt' containing the payload, which when pasted into the vulnerable field causes the application to crash.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: SoftX FTP Client 3.3

No auth needed

Prerequisites: SoftX FTP Client 3.3 installed on Windows XP SP3 · Ability to execute Python script to generate payload · User interaction to paste payload into 'Site Label' field

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026