ProFTPD _xlate_ascii_write off-by-two exploit v1.12 Vulnerability exploited: CAN-2004-0346 - BID-9782 Category: Exploits/Remote This module exploits a buffer overflow in ProFTPD in order to install a level0 agent. An off-by-two heap overflow exists in ProFTPD 1.2.7 to 1.2.9rc1 and 1.2.7p to 1.2.9rc1p. This bug can only be exploited if there is a writable directory on the FTP server.This module uses two different techniques in order to exploit the bug, depending on the glibc version (new glibc versions use a modified malloc implementation). Once the bug has been exploited, full root capabilities are regained (chroot can therefore be broken thanks to the appropriate module). Supported Systems: Debian Linux 2.2 (i386) Debian Linux 3 (i386) RedHat Linux 6.2 (i386) RedHat Linux 7 (i386) RedHat Linux 7.1 (i386) RedHat Linux 7.2 (i386) RedHat Linux 7.3 (i386) RedHat Linux 8 (i386) RedHat Linux 9 (i386) This module is included in the latest version of CORE IMPACT, the first automated comprehensive penetration testing product for accurately identifying information security risks. Click here to learn more about the product.