1f8c35c0c0
25 new exploits Samba < 3.6.2 (x86) - Denial of Serviec (PoC) Samba < 3.6.2 (x86) - Denial of Service (PoC) Microsoft Visual Studio 2015 update 3 - Denial of Service Disk Sorter Enterprise 9.5.12 - Local Buffer Overflow Apple Safari - 'DateTimeFormat.format' Type Confusion Apple Safari - Builtin JavaScript Allows Function.caller to be Used in Strict Mode Apple Safari - Out-of-Bounds Read when Calling Bound Function QNAP QTS < 4.2.4 - Domain Privilege Escalation Internet Information Services (IIS) 6.0 WebDAV - 'ScStoragePathFromUrl' Buffer Overflow Samba 4.5.2 - Symlink Race Permits Opening Files Outside Share Directory Github Enterprise - Default Session Secret And Deserialization (Metasploit) B2B Alibaba Clone Script - SQL Injection B2B Alibaba Clone Script - 'IndustryID' Parameter SQL Injection Just Another Video Script 1.4.3 - SQL Injection Adult Tube Video Script - SQL Injection Alibaba Clone Script - SQL Injection B2B Marketplace Script 2.0 - SQL Injection Php Real Estate Property Script - SQL Injection Courier Tracking Software 6.0 - SQL Injection Parcel Delivery Booking Script 1.0 - SQL Injection Delux Same Day Delivery Script 1.0 - SQL Injection Hotel Booking Script 1.0 - SQL Injection Tour Package Booking 1.0 - SQL Injection Professional Bus Booking Script - 'hid_Busid' Parameter SQL Injection CouponPHP CMS 3.1 - 'code' Parameter SQL Injection EyesOfNetwork (EON) 5.0 - Remote Code Execution EyesOfNetwork (EON) 5.0 - SQL Injection Nuxeo 6.0 / 7.1 / 7.2 / 7.3 - Remote Code Execution (Metasploit) inoERP 0.6.1 - Cross-Site Scripting / Cross-Site Request Forgery / SQL Injection / Session Fixation
51 lines
796 B
Text
Executable file
51 lines
796 B
Text
Executable file
[+] Title: Disk Sorter Server v9.5.12 - Local Stack-based buffer overflow
|
|
[+] Credits / Discovery: Nassim Asrir
|
|
[+] Author Email: wassline@gmail.com || https://www.linkedin.com/in/nassim-asrir-b73a57122/
|
|
[+] Author Company: Henceforth
|
|
[+] CVE: N/A
|
|
|
|
Vendor:
|
|
===============
|
|
|
|
http://www.disksorter.com/
|
|
|
|
|
|
Download:
|
|
===========
|
|
|
|
http://www.disksorter.com/setups/disksortersrv_setup_v9.5.12.exe
|
|
|
|
|
|
Vulnerability Type:
|
|
===================
|
|
|
|
local stack-based buffer overflow
|
|
|
|
|
|
POC:
|
|
===================
|
|
|
|
Launch the program click on :
|
|
|
|
1 - Server
|
|
|
|
2 - Connect
|
|
|
|
3 - and in the Share Name field inject (5000 "A") then the program crashed see the picture.
|
|
|
|
CVE Reference:
|
|
===============
|
|
|
|
N/A
|
|
|
|
|
|
Tested on:
|
|
===============
|
|
|
|
Windows 7
|
|
|
|
Win xp
|
|
|
|
|
|
|
|
|