.

Denial of Service

<<

Inc0

Newbie
Newbie

Posts: 2

Joined: Sat Jul 02, 2011 1:59 pm

Post Sat Jul 02, 2011 2:05 pm

Denial of Service

Hello, I need some explanation, check this exploit : http://1337day.com/exploits/14229, its a denial of service, but how can I dos someone with this ?

Thank You :D
<<

cd1zz

User avatar

Recruiters
Recruiters

Posts: 566

Joined: Sun Oct 03, 2010 9:01 pm

Post Sat Jul 02, 2011 3:01 pm

Re: Denial of Service

Its not a remote exploit so you would have to convince someone to open your .m3u or .pls file.
<<

Data_Raid

User avatar

Full Member
Full Member

Posts: 165

Joined: Fri Nov 09, 2007 5:55 am

Post Sat Jul 02, 2011 3:14 pm

Re: Denial of Service

Inc0 wrote:Hello, I need some explanation, check this exploit : http://1337day.com/exploits/14229, its a denial of service, but how can I dos someone with this ?

Thank You :D


The exploit mentions that BS Player 2.56  needs to be installed (might also work on the latest version: 2.57), the "victim" needs to open the crafted playlist file (m3u or pls). So you will need to send someone your malicious playlist file (hosting the playlist on a website might also work), all the exploit does is write 25000 A's and crash the app.
All men by nature desire knowledge.

Aristotle
<<

cd1zz

User avatar

Recruiters
Recruiters

Posts: 566

Joined: Sun Oct 03, 2010 9:01 pm

Post Sat Jul 02, 2011 6:47 pm

Re: Denial of Service

A better exercise would be to complete the exploit. It's unicode but c0relan has some great references for this :)
<<

Inc0

Newbie
Newbie

Posts: 2

Joined: Sat Jul 02, 2011 1:59 pm

Post Sat Jul 02, 2011 11:22 pm

Re: Denial of Service

Thank you all, I have one more question, whats the difference, between this : http://www.exploit-db.com/exploits/11839/ (Local Crash) and that (Denial of serice) exploit ?
<<

cd1zz

User avatar

Recruiters
Recruiters

Posts: 566

Joined: Sun Oct 03, 2010 9:01 pm

Post Sun Jul 03, 2011 9:06 am

Re: Denial of Service

A denial of service and a crash are the same thing. The terms are often used interchangeably. A PoC (noted in your exploit-db example) is a "proof of concept." In both of the examples you've asked about, a researcher found the bug but did not finish the exploit to show how to get code execution. Not all bugs are exploitable which is why they might of stopped here. There is only one way to find out!

Return to Other

Who is online

Users browsing this forum: No registered users and 1 guest

cron
.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software