NICO-FTP Buffer Overflow Vulnerability Allowing Arbitrary Code Execution
Vulnerability
A buffer overflow vulnerability has been identified in NICO-FTP version 3.0.1.19. This vulnerability arises from a structured exception handler (SEH) buffer overflow, which allows remote attackers to execute arbitrary code by sending crafted FTP commands. Attackers can connect to the FTP service and transmit oversized data in response handlers, overwriting SEH pointers and redirecting execution to injected shellcode.
Impact
Exploitation of this vulnerability allows for arbitrary code execution on the affected system.
Reproduction
The vulnerability can be reproduced by sending oversized FTP commands that exploit the structured exception handler buffer overflow. This can be done using a crafted payload that overwrites SEH pointers and redirects execution to injected shellcode. The exploit can be automated with a Python script that simulates a malicious FTP server, accepts incoming connections, and sends the crafted payload as the response.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.