FTPGetter v126.96.36.199 Buffer Overflow (PASV) Exploit
A vulnerability has been discovered in FTPGetter, which can be exploited by malicious people to compromise a user’s system.
The issue is likely due to insufficient bounds checking and presents itself when the affected FTP client makes a connection to a malicious server that is running PASV mode. The PASV command is issued to tell the server that the client wishes to transfer files in passive mode. FTP servers that support passive mode will respond to such a request with an IP address and port number.
Successful exploitation allows execution of arbitrary code, but requires that the user is tricked into connecting to a malicious FTP server. (more…)
Nice Buffer Overflow Video – Easy Music Player
Well, this will show you how the buffer overflow exploitation works against Easy Music Player.
Powered by ScribeFire.