New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Buffer Overflow on Disk Sorter Enterprise #8266
Conversation
Buffer Overflow on Disk Sorter Enterprise
Can you please add docs |
'Name' => 'Disk Sorter Enterprise GET Buffer Overflow', | ||
'Description' => %q{ | ||
This module exploits a stack-based buffer overflow vulnerability | ||
in the web interface of Disk Sorter Enterprise v9.5.12,caused by |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
space after ,
Done, let me know if you need anything else. |
docs are .md not .rb.md you should be able to |
I will test this PR. Thanks! |
The exploit works for me:
Also the doc is easy to follow. Great job! |
Release NotesThe exploit/windows/http/disksorter_bof module has been added to the framework. It exploits a buffer overflow vulnerability in Disk Sorter Enterprise. By sending a specially crafted string in an HTTP GET request, you can gain arbitrary remote code execution under the context of SYSTEM. |
The software is available at: http://www.disksorter.com/setups/disksorterent_setup_v9.5.12.exe
Video: https://youtu.be/ot9UASdRY1w