This is just a quick post mainly to advertise these new modules for Metasploit.
I quickly tried out the new metasploit client ftp fuzzer from the Corelan Team.
I ‘googled’ for free ftp clients and picked one at random, (can’t give out the name of the software – responsible disclosure).
Installed the client onto an XP sp3 fully patched VM, attached OllyDbg and setup the Metasploit module as described in the blog post, connected to the FTP server tried to download the test files and presto buffer overflow!!
Now just need to figure out the exploit for metasploit.
That should all being well be in a later post.
Check out the post from the Corelan Team and happy Fuzzing.