FreeFloat FTP Server Buffer Overflow Vulnerability in TRACE Command Handler

A critical buffer overflow vulnerability has been identified in FreeFloat FTP Server version 1.0. The issue arises in the TRACE Command Handler, where the server improperly handles input, allowing for a buffer overflow that can be exploited remotely. This vulnerability does not require authentication.

Impact

Exploitation of this vulnerability allows for a buffer overflow, which can lead to arbitrary code execution by overwriting the return address on the stack and redirecting execution to the injected code.

Reproduction

The vulnerability can be reproduced by sending an excessive amount of data through the TRACE command. This overload causes the application to crash, demonstrating the buffer overflow condition. After identifying the offset needed to exploit the vulnerability, the TRACE command can be used to send a crafted payload that includes shellcode, such as a reverse shell, which is executed on the server.