Metasploit mailing list archives

fuzzers/ftp/ftp_pre_post Bugs

From: Jacky Jack <jacksonsmth698 () gmail com>
Date: Thu, 5 Aug 2010 15:33:17 +0800

Hi

One assumption flaw in the fuzzer is that it

- assumes "connection reset" as ftp service crash (some ftp servers
response "connection reset" when they see overly large string")

The other might be related to the framework.
I got the following exception message when running on a particular FTP
server (which didn't crash)

[*] Error: Errno::EPIPE Broken pipe
["/opt/metasploit3/msf3/lib/rex/io/stream.rb:44:in `syswrite'",
"/opt/metasploit3/msf3/lib/rex/io/stream.rb:44:in `write'",
"/opt/metasploit3/msf3/lib/rex/io/stream.rb:130:in `timed_write'",
"/opt/metasploit3/msf3/lib/rex/io/stream.rb:161:in `put'",
"(eval):173:in `block (2 levels) in run_host'", "(eval):158:in
`each'", "(eval):158:in `block in run_host'", "(eval):156:in `each'",
"(eval):156:in `run_host'",
"/opt/metasploit3/msf3/lib/msf/core/auxiliary/scanner.rb:92:in `block
in run'"]


Between stage4 -5, it gave out the above exception message.
Then, the fuzzer stopped fuzzings.
I re-ran the fuzzer. Same result.
So, it seems that I can never finish fuzzing on that FTP server.


Thanks.
_______________________________________________
https://mail.metasploit.com/mailman/listinfo/framework

Current thread:

fuzzers/ftp/ftp_pre_post Bugs Jacky Jack (Aug 05)