• We just launched and are currently in beta. Join us as we build and grow the community.

Exploit HFS Http File Server 2.3m Build 300 – Buffer Overflow (PoC)

SCORPIOIVCCX

Pun Mastermind
S
S Rep
0
0
0
Rep
0
S Vouches
0
0
0
Vouches
0
Posts
172
Likes
195
Bits
0
2 MONTHS
2 2 MONTHS OF SERVICE
LEVEL 1 400 XP
Cve-2020-13432-1.png

CVE-2020-13432

Security Issue

This vulnerability allows an remote attackers to trigger an invalid-pointer write access violation via concurrent HTTP requests with a long URI or long HTTP headers like Cookie, User-Agent etc. Remote unauthenticated attackers can send concurrent HTTP requests using an incrementing or specific payload range of junk characters for values in the URL parameters or HTTP headers sent to the server. This results in hfs.exe server crash from an invalid pointer write access violation.

Download Vulnerable Software

Loading…

sourceforge.net

Loading…

sourceforge.net

Full Proof of Concept

Step -1

1-8.png


Step -2

2-7.png


Step -3

3-9.png


Step -4

4-9.png


Great !! The vulnerable software is crashed.

About the AuthorVirat Sharma Certified Ethical Hacker, information security analyst, penetration tester and researcher. Can be Contact on Linkedin.
 
You must log in or register to reply here.

427,549

310,984

310,993

Y YousefAhme1233098
Top