Published: 04/10/2011 Updated: 14/02/2024

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

VMScore: 695

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Stack-based buffer overflow in AmmSoft ScriptFTP 3.3 allows remote FTP servers to execute arbitrary code via a long filename in a response to a LIST command, as demonstrated using (1) GETLIST or (2) GETFILE in a ScriptFTP script.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ammsoft scriptftp 3.3

# Exploit Title: ScriptFTP <=33 Remote Buffer Overflow (LIST) # Date: September 20, 2011 # Author: modpr0be # Software Link: wwwscriptftpcom/ScriptFTP_3_3_setupexe # Version: 33 # Tested on: Windows XP SP3, Windows Server 2003 SP1 (SE) (VMware 314 build-385536) # CVE : - # # Thanks: offsec, exploit-db, corelanc0d3r, 5M7X, loneferre ...

## # $Id: scriptftp_listrb 13841 2011-10-09 05:36:42Z sinn3r $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## class Metasploit3 < Ms ...

#Exploit Title: ScriptFTP 33 Remote Buffer Overflow (MSF) #Date: Sept 20 2011 #Author: otoy #Version: 33 #Tested on: Windows XP SP3 #CVE : - #EDB-ID: 17876 #Thanks: cyb3ranbu, spentera-team, dE-team, offsec, exploit-db, corelanc0d3r class Metasploit3 < Msf::Exploit::Remote Rank = GoodRanking include Exploit::Remote::FtpServer def initi ...

CWE-119 http://www.digital-echidna.org/2011/09/scriptftp-3-3-remote-buffer-overflow-exploit-0day/http://www.exploit-db.com/exploits/17876 http://secunia.com/advisories/46099 http://www.securityfocus.com/bid/49707 http://www.kb.cert.org/vuls/id/440219 https://exchange.xforce.ibmcloud.com/vulnerabilities/69962 https://nvd.nist.gov https://www.exploit-db.com/exploits/17876/

CVE-2011-3976

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect