CVE-2007-1195

Vulnerability

XM Easy Personal FTP Server version 5.3.0 is affected by multiple buffer overflow vulnerabilities, as well as format string bugs, in various FTP commands. The software fails to properly validate input lengths and format string specifiers, leading to memory corruption. The exact vectors are unspecified but the exploit demonstrates that commands such as ABOR are vulnerable [1].

Exploitation

An attacker with valid FTP credentials (e.g., test/test) can connect to the server and send a crafted command containing a long string or format string specifiers like %n. The exploit script sends a repeated %n pattern to trigger the vulnerability. No additional privileges or user interaction beyond authentication is required [1].

Impact

Successful exploitation allows remote attackers to execute arbitrary code on the target system with the privileges of the FTP server process. This can lead to full compromise of the affected host, including data theft, installation of malware, or further network attacks.

Mitigation

No official patch or updated version has been released by the vendor. The software appears to be end-of-life and unsupported. Users should consider migrating to a different FTP server solution. As of the publication date, no workaround is available [1].