PCMan FTP Server Buffer Overflow Vulnerability in LCD Command Handler

A critical buffer overflow vulnerability has been identified in PCMan FTP Server version 2.0.7. This issue arises from an unknown processing flaw in the LCD Command Handler, allowing remote attackers to manipulate the application and cause a buffer overflow. The vulnerability has been publicly disclosed and could be exploited to execute arbitrary code on the affected system.

Impact

Exploitation of this vulnerability could lead to a remote code execution, allowing an attacker to execute arbitrary commands on the vulnerable system.

Reproduction

The vulnerability can be reproduced by sending an excessive amount of data through the 'LCD' command. This causes the application to crash, indicating a buffer overflow condition. The offset for the buffer overflow can be determined using tools like 'msf-pattern_create' and 'msf-pattern_offset'. After identifying the offset, the stack can be manipulated by finding a 'JMP ESP' address using 'mona'. The exploit can be crafted by generating shellcode with 'msfvenom', removing bad characters, and appending the payload to the exploit command.