Freefloat FTP Server is prone to an overflow condition. It fails to properly sanitize user-supplied input resulting in a stack-based buffer overflow. With a specially crafted ‘USER’ command, a remote attacker can potentially have an unspecified impact.

Runtime Metasploit Module

With 2 method exploitation:
– Fuzzing : Controlled Crash, Find Offset
– IC Highjacking
Platforms :windows

Example Shodan Target

Download : ftp_freefloat-master.zip(514 KB) | Clone Url
Source : https://github.com/claxch