| Title | EzServer EzServer 6.4.017 Denial of Service |
|---|
| Description | His technique works fine against Windows XP Professional Service Pack 2 and 3 (English).
For this exploit I have tried several strategies to increase reliability and performance:
Jump to a static 'call esp'
Backwards jump to code a known distance from the stack pointer.
The FTP server does not correctly handle the amount of data or bytes sent to command RNTO.
When authenticating to the FTP server with a large number of characters for the server to process, the server will crash as soon as it is received and processed, causing Denied of service onditions.
#Successful exploitation of these issues allows remote attackers to crash the affected server, denying service to legitimate users. |
|---|
| Source | ⚠️ https://packetstormsecurity.com/files/176663/EzServer-6.4.017-Denial-Of-Service.html |
|---|
| User | fernando.mengali (UID 60856) |
|---|
| Submission | 01/22/2024 20:48 (2 years ago) |
|---|
| Moderation | 01/25/2024 15:14 (3 days later) |
|---|
| Status | Duplicate |
|---|
| VulDB entry | 252014 [EzServer 6.4.017 Daemon denial of service] |
|---|
| Points | 0 |
|---|