vendor:
DiskSorter
by:
2017
this is bad since POP ESP is 0x5c. 3. Had to write custom shellcode to get the exact location of alphanumeric shellcode in memory."
CVSS
7.5
Local Buffer Overflow
CWE
Product Name: DiskSorter
Affected Version From: NO
Affected Version To: 9.7.14
Patch Exists: Update to a non-vulnerable version of DiskSorter.
Related CWE: abatchy17
CPE: 9.7.14
Metasploit:
https://www.exploit-db.com/raw/42157
Platforms Tested: DiskSorter
HIGH
DiskSorter v9.7.14 – Local Buffer Overflow
To trigger the exploit, paste the content of exploit.txt into "Add Input Directory" text box. Challenges to convert this DoS to code execution: 1. Program doesn't accept non ASCII characters (0x01 to 0xff are okay-ish). 2. Buffer at ESP splits string if it contains a ""
Mitigation:
119
