Gurou
Jan 25 2004, 10:18 AM
Windows XP/2003 Samba File Sharing Resource Exhaustion Exploit
http://www.k-otik.com/exploits/01.25.winblast.sh.php 
BuzzDee
Jan 25 2004, 11:00 AM
hmm sounds like a denial of service exploit...
Icarus
Jan 25 2004, 11:23 AM
| QUOTE (BuzzDee @ Jan 25 2004, 11:00 AM) |
| hmm sounds like a denial of service exploit... |
yessss is bad ....
the script is write in bin/bash only run on unix system maybe under win/cygwin
Cyrus
Jan 25 2004, 11:31 AM
| QUOTE |
If you want to try for yourself, check this shell script. The script will
# create 1000 directories and then takes turns deleting and re-creating
# them. There will be no more than those 1000 directories at any time.
|
Creating many folders and delete them on a share should work with a normal .bat file too.
570n3d
Jan 25 2004, 11:34 AM
how can i scan for this exploit??
greetz 570n3d
chrispen
Jan 25 2004, 01:44 PM
| QUOTE (570n3d @ Jan 25 2004, 11:34 AM) |
how can i scan for this exploit??
greetz 570n3d |
OMFG!! when you talk about script-kiddie this is EXACTLY what you you have in mind!! LOL KID didn't you read ANY of the lines commented or the replies? WHAT to scan ?
TmZ
Jan 25 2004, 01:45 PM
argh....
Skydriver
Jan 25 2004, 02:02 PM
570n3d
try to scan for open shares :0)
esorone
Jan 25 2004, 07:18 PM
| QUOTE (Skydriver @ Jan 25 2004, 02:02 PM) |
570n3d
try to scan for open shares :0) |
lol.
And yes...itcan be done throuh a .bat file.
Nexcess
Jan 25 2004, 08:23 PM
| QUOTE (570n3d @ Jan 25 2004, 11:34 AM) |
how can i scan for this exploit??
greetz 570n3d |
okay, first you have to setup your system for scanning so you get a command prompt and type del c:\windows then press y when it asks if your sure or if your using nt del c:\winnt then press y when it asks if your sure then restart your pc and youll be ready to scan for this its uber cool only 1337 people know this yo so dont give it out!
edit: /me slaps forehead in angst
saetji
Jan 25 2004, 09:11 PM
r0fl
clip
Jan 25 2004, 11:50 PM
| QUOTE (570n3d @ Jan 25 2004, 11:34 AM) |
how can i scan for this exploit??
greetz 570n3d |
ah.. that made me laugh.. Thanks.
Train25
Jan 25 2004, 11:52 PM
| QUOTE (Nexcess @ Jan 25 2004, 04:23 PM) |
okay, first you have to setup your system for scanning so you get a command prompt and type del c:\windows then press y when it asks if your sure or if your using nt del c:\winnt then press y when it asks if your sure then restart your pc and youll be ready to scan for this its uber cool only 1337 people know this yo so dont give it out!
|
Nice trick i got to try this right away
Reaper527
Jan 26 2004, 12:38 AM
| QUOTE (570n3d @ Jan 25 2004, 11:34 AM) |
how can i scan for this exploit??
greetz 570n3d |
apparently you didn't read the reply
| QUOTE |
hmm sounds like a denial of service exploit...
|
you don't scan this and hack it like SQL, all this does is screw with someone's samba sharing server so people can't use it. it doesn't give you a shell or anything where you can run commands and such.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please
click here.
