Published: 01/08/2006 Updated: 20/07/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 771

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Stack-based buffer overflow in EFS Software Easy File Sharing FTP Server 2.0 allows remote malicious users to execute arbitrary code via a long argument to the PASS command. NOTE: the provenance of this information is unknown; the details are obtained from third party information.

Vulnerable Product	Search on Vulmon	Subscribe to Product
efs software efs ftp server 2.0

Easy File Sharing FTP Server version 35 suffers from a stack buffer overflow vulnerability ...

#!/usr/bin/env python # Exploit Title: Easy File Sharing FTP Server 35 stack buffer overflow # Date: 27 May 2014 # Exploit Author: superkojiman - wwwtechorganiccom # Vulnerability discovered by: h07 # CVE: CVE-2006-3952 # OSVDB: 27646 # Vendor Homepage: wwwefssoftcom # Software Link: wwwefssoftcom/ftpserverhtm # Version ...

#!/usr/bin/python # Remote exploit for Easy File Sharing FTP server V20 The vulnerability # was discovered by h07 and a POC for windows XP SP2 (polish version) was # provided This exploit was tested on windows 2000 server SP4 The exploit # binds a shell on TCP port 4444 # # Author shall bear no responsibility for any screw ups # Winny Thomas : ...

#!/usr/bin/python #Easy File Sharing FTP Server 20 (PASS) 0day PoC exploit #Proof of Concept: execute calcexe #Bug found by h07 <h07@interiapl> #Tested on XP SP2 polish #Date: 28072006 # #BUFF([PASS + 0x20]+[0x2c]+[NOP * 2571]+[0x41414141]+[\r\n]) #EIP = 0x41414141 host = "127001" port = 21 len_recv = 1024 user_name = "anonymous" NOP ...

## # $Id: easyfilesharing_passrb 9262 2010-05-09 17:45:00Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' c ...

Exploit remote untuk Easy File Sharing FTP Server pada celah command PASS di Windows

exploiteasyfilesharingftp Exploit remote untuk Easy File Sharing FTP Server pada celah command PASS di Windows Program Exploit python untuk Easy File Sharing FTP Server pada celah command PASS di Windows Progammer : Program ini dibuat oleh Kurniawan ( E-mail : trainingxcode@gmailcom xcodeorid ) #reference bug : CVE-2006-3952

Exploit for Easy File Sharing FTP Server 3.5 on Win7 32

CVE-2006-3952 Exploit for Easy File Sharing FTP Server 35 on Win7 32 Based on: pwntools msfvenom / reverse_tcp payload Vulnerable app available at wwwexploit-dbcom/apps/0efddb6d04f4125d7c1f104c6b1c60a0-efsfsexe Simple SEH overrite + couple jumps back, due to stack being corrupted after SEH value

exploiteasyfilesharingftp Exploit remote untuk Easy File Sharing FTP Server pada celah command PASS di Windows Program Exploit python untuk Easy File Sharing FTP Server pada celah command PASS di Windows Progammer : Program ini dibuat oleh Kurniawan ( E-mail : trainingxcode@gmailcom xcodeorid ) #reference bug : CVE-2006-3952

NVD-CWE-Other http://secunia.com/advisories/21289 http://www.osvdb.org/27646 http://www.vupen.com/english/advisories/2006/3068 http://www.securityfocus.com/bid/19243 https://exchange.xforce.ibmcloud.com/vulnerabilities/28084 https://nvd.nist.gov https://github.com/kurniawandata/exploiteasyfilesharingftp https://packetstormsecurity.com/files/126845/Easy-File-Sharing-FTP-Server-3.5-Buffer-Overflow.html https://www.exploit-db.com/exploits/33538/

CVE-2006-3952

Vulnerability Summary

Vulnerability Trend

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect