New User, Welcome!     Login

Easy Personal

Re: XM Easy Personal FTP Server 'LIST' Command Remote DoS Vulnerability

        include Msf::Exploit::Remote::Ftp
        include Msf::Auxiliary::Dos      

        def initialize(info = {})
                super(update_info(info,
                        'Name'           => 'XM Easy Personal FTP Server 5.8.0 Type  DoS',
                        'Description'    => %q{
                                You need a valid login to DoS this FTP server, but
                                even anonymous can do it as long as it has permission
                                to call Type.
                        },

[Security] XM Easy Personal FTP Server Multiple DoS vulnerabilities

XM Easy Personal FTP Server Multiple DoS vulnerabilities

Credits:
NeerajT of Nevis Labs
http://www.nevisnetworks.com/services.php?id=10

Date of Discovery: 14-May-2009

Vendor: Dxmsoft
URL: http://www.dxm2008.com/

XM Easy Personal FTP Server 'LIST' Command Remote DoS Vulnerability

Credits:zhangmc[at]mail.ustc.edu.cn

Vendor: Dxmsoft

Affected:
XM Easy Personal FTP Server 5.8.0
Earlier versions may also be affected

Overview:
XM Easy Personal FTP Server is a easy use FTP server Application. Denial of service vulnerability exists in XM Personal FTP Server that causes the application to crash when the "LIST" is sent to FTP server if you do not use "PASV" or "POST" first.

XM Easy Personal FTP Server Remote DoS Vulnerability

Vendor: Dxmsoft
*******************************************************************************
Affected:

        XM Easy Personal FTP Server 5.8.0
        Earlier versions may also be affected
*******************************************************************************
Overview:

        XM Easy Personal FTP Server failed to handle more than 2000 files or folders in

XM Easy Personal FTP Server 'APPE' and 'DELE' Command Remote Denial of Service Vulnerability

Credits:zhangmc[at]mail.ustc.edu.cn

Vendor: Dxmsoft

Affected:
XM Easy Personal FTP Server 5.8.0
Earlier versions may also be affected

Overview:
XM Easy Personal FTP Server is an easy use FTP server Application. Denial of service vulnerability exists in XM Personal 
FTP Server when "APPE" is used in one socket connection while "DELE" command is used in another.

XM Easy Personal FTP Server HELP and TYPE command Remote Denial of Service exploit

#!usr/bin/perl -w

#######################################################################################
#   XM Easy Personal FTP Server 5.x allows remote attackers to cause a denial of service
#   via a "HELP" or "TYPE" command with an overly long argument.
#   Refer:
#                                                                                                       http://secunia.com/advisories/35271/
#        Original advisory avaiable at: http://securitygyan.com/2009/06/09/xm-easy-personal-ftp-server-help-and-type-command-rdos-exploit/
#                 Product link: http://www.dxm2008.com/
#


Copyright © 1995-2012 LinuxRocket.net. All rights reserved.

Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!