This Metasploit module exploits the FTP server component of the Sasser worm. By sending an overly long PORT command the stack can be overwritten.
5d5c22dfbd84d41c7c21a45e5676f648dbcc83cd3302d47b1a95c27ace3b87f0
Presentation called Further Down the VM Spiral.
c375df19723aa50405c3578260589605b47dac194a812c3bcb3360c7a43ef6bf
Presentation called Hacking Malware - Offense is the new Defense.
49a69eea4ecdcbb9fd14a6e4078bbd75a781159d16030e70283919300e0d4dd9