# Exploit Title: PCMAN FTP 207 Long Command Buffer Overflow (unauthenticated)
# Date: Feb 19, 2014
# Exploit Author: Sumit
# Version: 207
# Tested on: Windows XP Professional SP3
# Description: Buffer overflow is triggered upon sending long string to PCMAN FTP 207 in place of command
#
import socket
import datetime
"""
You have to take into ac ...
# Exploit-DB Note: Ret needs adjustment for Windows XP SP3 English
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions Please see the Metasploit
# web site for more information on licensing and terms of use
# metasploitcom/
##
require 'msf/core'
class Metasploit3 < ...
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions Please see the Metasploit
# web site for more information on licensing and terms of use
# metasploitcom/
##
require 'msf/core'
class Metasploit3 < Msf::Exploit::Remote
Rank = AverageRanking
include Msf::Exploit:: ...
PCMan is win32 application that is vulnerable to buffer overflow attack
Hacking-in-to-PCMan-ftp-server
PCMan is win32 application that is vulnerable to buffer overflow attack
PCMan FTP Server 207 has a public vulnerability CVE-2013-4730 based on buffer overflow that is allowed remote attacker to execute arbitrary code via client command This is a stack based buffer overflow vulnerability In order to preform a buffer overflow, we need to use sp
A very simple buffer overflow using CVE-2013-4730 against PCman's FTP server
PCman FTP Server Buffer overflow and Remote Code Execution [CVE-2013-4730]
A very simple buffer overflow using CVE-2013-4730 against PCman's FTP server v207
How it works?
That easy BoF overwrite the buffer and execute the shellcode that will connect back (reverse shell)
Vuln machines:
WindowsXP SP3 running PCman's FTP Server at version 207
launch
~$ python3 PCman
Vulmon