| Titolo | EzServer EzServer 6.4.017 Denial of Service |
|---|
| Descrizione | His technique works fine against Windows XP Professional Service Pack 2 and 3 (English).
For this exploit I have tried several strategies to increase reliability and performance:
Jump to a static 'call esp'
Backwards jump to code a known distance from the stack pointer.
The FTP server does not correctly handle the amount of data or bytes sent to command RNTO.
When authenticating to the FTP server with a large number of characters for the server to process, the server will crash as soon as it is received and processed, causing Denied of service onditions.
#Successful exploitation of these issues allows remote attackers to crash the affected server, denying service to legitimate users. |
|---|
| Fonte | ⚠️ https://packetstormsecurity.com/files/176663/EzServer-6.4.017-Denial-Of-Service.html |
|---|
| Utente | fernando.mengali (UID 60856) |
|---|
| Sottomissione | 22/01/2024 20:48 (2 anni fa) |
|---|
| Moderazione | 25/01/2024 15:14 (3 days later) |
|---|
| Stato | Duplicato |
|---|
| Voce VulDB | 252014 [EzServer 6.4.017 Daemon negazione del servizio] |
|---|
| Punti | 0 |
|---|