PCMan FTP Server Buffer Overflow Vulnerability in STATUS Command Handler

A critical buffer overflow vulnerability has been identified in PCMan FTP Server version 2.0.7. This issue arises in the STATUS Command Handler component, allowing remote attackers to exploit the vulnerability. The buffer overflow has been publicly disclosed and could be used to execute an attack.

Impact

Exploitation of this vulnerability leads to a buffer overflow, which can commonly result in arbitrary code execution or causing a denial-of-service condition.

Reproduction

The vulnerability can be reproduced by sending a crafted STATUS command that includes a payload designed to overflow the buffer. This can be done using a TCP connection to the FTP server's port 21. After establishing the connection and authenticating with the USER and PASS commands, the STATUS command can be issued with the payload. The payload should be approximately 2004 bytes of 'A' characters followed by the address of a JMP ESP instruction, a NOP sled, and a shellcode payload. The server's response can be monitored to confirm the exploitation.