Writing an BoF Exploit for CVE-2017-1000218 – LightFTP v1.1

UpdatedApril 28, 2026

•1 min read

Writing an BoF Exploit for CVE-2017-1000218 – LightFTP v1.1

I am an experienced Vulnerability Researcher and Security Architect with 16+ years of experience in various verticals and horizontals, be it consumer electronics, semiconductors, automotive or other. Having started in software engineer in low-level embedded devices from writing applications to kernel drivers on various operating systems and then moving to my real calling i.e. hacking. Love to stick to the older golden days of game hacking, BBS, shareware, phreaking, phrack, virus era, metal music, cheats and many more such cool stuff from the underground. I wear many hats from time to time as necessary - but I also love to help people and organizations to deal with the core cybersecurity issues and not provide them a checklist with a presentation. Opinions and posts on my site are purely my own and do not reflect my work.

This is not really a post but a video that runs through one of the BoF exploits I wrote for CVE-2017-1000218 long time ago.

https://youtu.be/AEUuXiiW0Ts

If you TLDS – then it’s fine.

I am uploading all material for this video here.

expd-filesDownload

#exploitation-demos

6 views

Comments

Join the discussion

No comments yet. Be the first to comment.

More from this blog

Using LLM GPT 5.4 to Find a 0-day in Libjq and then Cry!

Introduction & Disclaimer: Everything found in this post is found by AI - I don't have access to other LLM's like the "Mythos" or other commercial tools from various security companies in this market.

Apr 27, 202613 min read96

Using LLM GPT 5.4 to Find a 0-day in Libjq and then Cry!

Philips Hue Bridge Investigations: Part I

Introduction I was always fascinated by the pwn2own competition - an elite hacking competition where hackers from all over the world compete against time and the most patched and unto dated systems, software’s, devices and products etc. The concept o...

Dec 2, 202513 min read362

Philips Hue Bridge Investigations: Part I

Part I: Triaging Blueborne From Stripped Binary

I remember back when I was working with a major Infotainment supplier in a very then recently formed security team, one of the agenda for us was to check if something that comes up online as a security blog/vulnerability/hack/talk etc and map that to...

Nov 16, 20257 min read165

Part I: Triaging Blueborne From Stripped Binary

How do you know what "Risks" you are shipping with your product ?

Story Time Phreaks ! You scroll Amazon or AliExpress late at night and a shiny IP or door camera shows up. It promises WiFi, Bluetooth, a slick app, cloud view, maybe even some AI sticker on the box. The price feels like a win so you buy it. What you...

Nov 12, 20258 min read74

How do you know what "Risks" you are shipping with your product ?

Script Kiddies Intro to LLM

I have absolutely no idea how LLMs (Large Language Models) work from the inside or outside, so to be honest, I’m a complete newbie and script kiddie when it comes to experimenting with them. However, like most of us, I’m a power user of tools like Ch...

Nov 12, 20253 min read97

Hacking Tales From gh0stshell

16 posts

Experiences of the past applied to today's CyberSecurity Context

Command Palette

Comments

More from this blog