can anyone explain/comment the program "pinger.c"?

**rookie_xy999** · March 31st, 2003, 11:00 AM

hi,

I have to analize this program (pinger.c), but I have no idea how it works.
can anyone explain or comment this program?

thanx,

rookie

***slarty*** · March 31st, 2003, 11:46 AM

It sends the "Ping of death" - which was a DoS attack which affected most systems, AFAICR this was invented in about 1997.

If there are any systems which are still unpatched since 1997, it may affect them.

It works by sending a fragmented ping packet that (including headers) is slightly larger than the maximum IP packet size. Many OSs had flaws which caused them to try and reassemble the packet and go beyond the end of the buffer, causing corruption which crashed the OS.

Oh yes one other thing. The Windows 95 implementation of "Ping" had a bug whereby it would actually generate these packets in good faith - so Win95 as well as being vulnerable, could actually *create* these packets with its own "ping" program.

**proactive** · March 31st, 2003, 11:54 AM

It's some kind of denial of service program. Seems like it's sending out malformed packets to attack some vulnerability (maybe in the TCP/IP implementation) on another computer.

Try to compile and debug to see what the program actually does. I can't figure out what it actually does in the last for-loop.

**rookie_xy999** · April 1st, 2003, 10:49 AM

thanx a lot

but I still don't understand how it works

can anyone explain the program more precisely?

***SirDice*** · April 1st, 2003, 03:18 PM

Originally posted here by rookie_xy999
thanx a lot

but I still don't understand how it works

can anyone explain the program more precisely?

Maybe this will help:

http://www.insecure.org/sploits/ping-o-death.html

***the_JinX*** · April 1st, 2003, 03:20 PM

rookie_xy999 learn C

Thread: can anyone explain/comment the program "pinger.c"?

Thread Tools

Display

can anyone explain/comment the program "pinger.c"?

Posting Permissions