VSFTPD v2.3.4 backdoor command

Enumeration the box with Nmap, we come across port 21 open

Port 21 – state OPEN – Service ftp – Version vsftpd 2.3.4

Since this is a Metasploit post, we are going to launch Metasploit and use the search function within it to search for “vsftpd”

We have a hit!

Lets go ahead and use the module by entering Use 0

Once in the module, we will want to see the options available and required

Looks like with this backdoor, we will just need to set our remote host (RHOST)

Tried the check module to see if it would let us know if it will work, but the module does not support it

And we have a shell!