BolinTech Dream FTP Server FTP Command Format String Vulnerability

BolinTech Dream FTP Server FTP Command Format String Vulnerability

The following examples have been supplied:

user %n
pass %n
retr %n
...
and just "%n" in command line.

The following exploit code is available as a module from the Metasploit Framework:

/data/vulnerabilities/exploits/9800-dreamftp_format.rb