Skip to content

Releases: the-emmons/CVE-2023-43177

CrushFTP 10.5.0 b2 - vulnerable build

03 Jan 16:26
@the-emmons the-emmons
crushftp_software
cfb3ff7
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
CrushFTP 10.5.0 b2 - vulnerable build Latest
Latest

Since it seems to be hard to find now, this is the non-paid version of CrushFTP10 that the exploit was developed against (10.5.0 b2). The 'CrushFTP10.zip' file contains the standard 10.4.0 unpaid version on the site for download. The 'CrushFTP-v10_5_0.zip' file is the update that would have typically been pushed via the runtime update service.

This software is the non-paid shareware version of the specific vulnerable version of CrushFTP this exploit was written for. I did not write this software, nor do I hold any degree of ownership over the source code. This version should exclusively be used for the purpose of detecting this exploit - it should not be used in any real business capacity.

To install and run:

  1. Unzip 'CrushFTP10.zip', then drop the 'CrushFTP-v10_5_0.zip' contents into the install folder and overwrite the changed files.
  2. Configure 'CRUSH_DIR' in 'crushftp_init.sh' to point to the correct install directory.
  3. Execute java -jar CrushFTP.jar to show a local client GUI interface where you can set up an admin account.
  4. Execute sudo crushftp_init.sh start to launch the software.

Let me know if any files are missing and I can include them from my local exploit development environment.

Cheers!

Assets 4
Loading