PCMan FTP Server Buffer Overflow Vulnerability in RMD Command Handler

A critical buffer overflow vulnerability has been identified in PCMan FTP Server version 2.0.7. This issue arises in the RMD Command Handler component, where the server improperly handles input buffer sizes, leading to a buffer overflow. The vulnerability can be exploited remotely, without any authentication requirements.

Impact

Exploitation of this vulnerability causes a buffer overflow, which can lead to arbitrary code execution or a crash of the application, depending on the exploit used.

Reproduction

The vulnerability can be reproduced by sending a crafted RMD command that includes a payload designed to overflow the buffer. This can be done using a TCP connection to the FTP server's command port (usually port 21). The payload should be carefully crafted to include the desired shellcode and overwrite the return address with a location that will execute the shellcode.