FreeFloat FTP Server Buffer Overflow Vulnerability in PASSIVE Command Handler

A critical buffer overflow vulnerability has been identified in FreeFloat FTP Server version 1.0. The issue arises in the PASSIVE Command Handler, where an unknown function improperly handles input, allowing for remote exploitation. This vulnerability has been publicly disclosed and is actively exploitable.

Impact

Exploitation of this vulnerability leads to a buffer overflow, allowing for arbitrary code execution on the affected system. The successful exploitation has been demonstrated to provide a reverse shell, giving the attacker remote command execution capabilities with the privileges of the vulnerable process.

Reproduction

The vulnerability can be reproduced by sending an excessive amount of data through the 'PASSIVE' command, which causes the application to crash, indicating a buffer overflow condition. After confirming the buffer overflow, the exploitation involves overwriting the Extended Instruction Pointer (EIP) with a return address that points to a payload, such as a reverse shell, which is then executed on the target system.