| Titel | EzServer EzServer 6.4.017 Denial of Service |
|---|
| Beschreibung | His technique works fine against Windows XP Professional Service Pack 2 and 3 (English).
For this exploit I have tried several strategies to increase reliability and performance:
Jump to a static 'call esp'
Backwards jump to code a known distance from the stack pointer.
The FTP server does not correctly handle the amount of data or bytes sent to command RNTO.
When authenticating to the FTP server with a large number of characters for the server to process, the server will crash as soon as it is received and processed, causing Denied of service onditions.
#Successful exploitation of these issues allows remote attackers to crash the affected server, denying service to legitimate users. |
|---|
| Quelle | ⚠️ https://packetstormsecurity.com/files/176663/EzServer-6.4.017-Denial-Of-Service.html |
|---|
| Benutzer | fernando.mengali (UID 60856) |
|---|
| Einreichung | 22.01.2024 20:48 (vor 2 Jahren) |
|---|
| Moderieren | 25.01.2024 15:14 (3 days later) |
|---|
| Status | Duplikat |
|---|
| VulDB Eintrag | 252014 [EzServer 6.4.017 Daemon Denial of Service] |
|---|
| Punkte | 0 |
|---|