CVE-2002-1522
published 2003-04-02CVE-2002-1522: Buffer overflow in PowerFTP FTP server 2.24, and possibly other versions, allows remote attackers to cause a denial of service and possibly execute arbitrary…
PriorityP424medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
13.63%
96.0th percentile
Buffer overflow in PowerFTP FTP server 2.24, and possibly other versions, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long USER argument.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cooolsoft | powerftp | — | — |
| cooolsoft | powerftp | — | — |
| cooolsoft | powerftp | — | — |
| cooolsoft | powerftp | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Suricata
GPL FTP USER overflow attempt
suricata·2010-09-23
CVE-1999-1510 GPL FTP USER overflow attempt
GPL FTP USER overflow attempt
Rule: alert ftp $EXTERNAL_NET any -> $HOME_NET any (msg:"GPL FTP USER overflow attempt"; flow:established,to_server,no_stream; content:"USER|20|"; nocase; isdataat:100,relative; pcre:"/^USER\x20[^\x00\x20\x0a\x0d]{100}/smi"; reference:bugtraq,10078; reference:bugtraq,1227; reference:bugtraq,1504; reference:bugtraq,1690; reference:bugtraq,4638; reference:bugtraq,7307; reference:bugtraq,8376; reference:cve,1999-1510; reference:cve,1999-1514; reference:cve,1999-1519; reference:cve,1999-1539; reference:cve,2000-0479; reference:cve,2000-0656; reference:cve,2000-0761; reference:cve,2000-0943; reference:cve,2000-1035; reference:cve,2000-1194; reference:cve,2001-0256; reference:cve,2001-0794; reference:cve,2001-0826; reference:cve,2002-0126; reference:cve,2002-1522;
Exploit-DB
Cooolsoft PowerFTP Server 2.x - Remote Denial of Service (2)
exploitdb·2002-10-05
CVE-2002-1522 Cooolsoft PowerFTP Server 2.x - Remote Denial of Service (2)
Cooolsoft PowerFTP Server 2.x - Remote Denial of Service (2)
---
source: https://www.securityfocus.com/bid/5899/info
PowerFTP server is a shareware ftp server available for the Microsoft Windows platform. It is distributed and maintained by Cooolsoft.
It has been reported that PowerFTP server does not properly handle long user names. When excessive data is supplied as an argument to the FTP 'USER' command, the server becomes unstable. Exploitation of this vulnerability typically results in a crash of the server, requiring a manual restart to resume FTP service.
#!/usr/bin/perl
use IO::Socket;
##########################################################
# #
# Remote Stack Overflow sploit for PersonalFTPD #
# If wanna talk with me find me on irc #
# irc.irochka.net #dwc, #global, #phreac
Exploit-DB
Cooolsoft PowerFTP Server 2.x - Remote Denial of Service (3)
exploitdb·2002-10-05
CVE-2002-1522 Cooolsoft PowerFTP Server 2.x - Remote Denial of Service (3)
Cooolsoft PowerFTP Server 2.x - Remote Denial of Service (3)
---
source: https://www.securityfocus.com/bid/5899/info
PowerFTP server is a shareware ftp server available for the Microsoft Windows platform. It is distributed and maintained by Cooolsoft.
It has been reported that PowerFTP server does not properly handle long user names. When excessive data is supplied as an argument to the FTP 'USER' command, the server becomes unstable. Exploitation of this vulnerability typically results in a crash of the server, requiring a manual restart to resume FTP service.
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/21909.tgz
Exploit-DB
Cooolsoft PowerFTP Server 2.x - Remote Denial of Service (1)
exploitdb·2002-10-05
CVE-2002-1522 Cooolsoft PowerFTP Server 2.x - Remote Denial of Service (1)
Cooolsoft PowerFTP Server 2.x - Remote Denial of Service (1)
---
// source: https://www.securityfocus.com/bid/5899/info
PowerFTP server is a shareware ftp server available for the Microsoft Windows platform. It is distributed and maintained by Cooolsoft.
It has been reported that PowerFTP server does not properly handle long user names. When excessive data is supplied as an argument to the FTP 'USER' command, the server becomes unstable. Exploitation of this vulnerability typically results in a crash of the server, requiring a manual restart to resume FTP service.
/* Remote DoS Exploit for PowerFTP server (all version) */
/* Coding by Morgan A. member of secureNT-2000 Greetz : */
/* kdm, Yann, GaLiaRepT, and all i've forgotten ;) */
#include
#include
#pragma comment(lib, "wsock32.lib
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2002-10/0075.htmlhttp://archives.neohapsis.com/archives/bugtraq/2002-10/0194.htmlhttp://www.iss.net/security_center/static/10286.phphttp://www.securityfocus.com/bid/5899http://archives.neohapsis.com/archives/bugtraq/2002-10/0075.htmlhttp://archives.neohapsis.com/archives/bugtraq/2002-10/0194.htmlhttp://www.iss.net/security_center/static/10286.phphttp://www.securityfocus.com/bid/5899
2003-04-02
Published