Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 08:08:38 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1877570728&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2F1007-exploits%2Feasyftp_list.rb.txt%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1877570728.1338192518.1338192518.1338192518.1%3B%2B__utmz%3D32867617.1338192518.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/92196/easyftp_list.rb.txt http://packetstormsecurity.org/files/92196/easyftp_list.rb.txt http://packetstormsecurity.org/files/92196/EasyFTP-Server-1.7.0.11-list.html-path-Stack-Buffer-Overflow.html Tue, 27 Jul 2010 23:11:13 GMT This Metasploit module exploits a stack-based buffer overflow in EasyFTP Server 1.7.0.11 and earlier. EasyFTP fails to check input size when parsing the 'path' parameter supplied to an HTTP GET request, which leads to a stack based buffer overflow. EasyFTP allows anonymous access by default; valid credentials are typically unnecessary to exploit this vulnerability. After version 1.7.0.12, this package was renamed "UplusFtp". Due to limited space, as well as difficulties using an egghunter, the use of staged, ORD, and/or shell payloads is recommended.