Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2011-2523

CWE-78 — OS Command Injection9 documents8 sources

Severity

9.8CRITICAL

EPSS

94.3%

top 0.06%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Vsftpd Vsftpd Debian Debian Linux Vsftpd Project Vsftpd

Timeline

PublishedNov 27

Latest updateApr 22

Description

vsftpd 2.3.4 downloaded between 20110630 and 20110703 contains a backdoor which opens a shell on port 6200/tcp.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

▶CVEListV5vsftpd/vsftpd2.3.4 downloaded between 20110630 and 20110703

▶NVDvsftpd_project/vsftpd2.3.4

Also affects: Debian Linux 10.0, 8.0, 9.0

🔴Vulnerability Details

GHSA

GHSA-qf3g-hgw2-8r8h: vsftpd 2↗2022-04-22

▶

CVEList

CVE-2011-2523: vsftpd 2↗2019-11-27

▶

💥Exploits & PoCs

Exploit-DB

vsftpd 2.3.4 - Backdoor Command Execution↗2021-04-12

▶

Exploit-DB

vsftpd 2.3.4 - Backdoor Command Execution (Metasploit)↗2011-07-05

▶

Nuclei

VSFTPD 2.3.4 - Backdoor Command Execution

▶

📋Vendor Advisories

Red Hat

vsftpd: backdoor which opens a shell on port 6200/tcp↗2011-07-04

▶

Debian

CVE-2011-2523: vsftpd - vsftpd 2.3.4 downloaded between 20110630 and 20110703 contains a backdoor which ...↗2011

▶

💬Community

Bugzilla

CVE-2011-2523 vsftpd: backdoor which opens a shell on port 6200/tcp↗2019-12-02

▶