SQLite Browser v2.0b1 Local DoS Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : SQLite Browser v2.0b1 Local DoS Vulnerability
# Published : 2010-02-06
# Author : Nishant Das Patnaik
# Previous Title : UltraISO 9.3.6.2750 Local Buffer Overflow POC (0day)
# Next Title : X-lite SIP v3 (wav) memory corruption Heap BOF exploit

# Exploit Title: SQLite Browser 2.0b1 Local DoS Vulnerability
# Author: Nishant Das Patnaik
# Tested on: Windows XP SP2/SP3 (x86), Vista (x86), Windows 7 (x64)
# Code : A specially crafted SQL file query can cause the the application to freeze and finally crash. The bug is the SQL query processor engine, it can't handle malformed SQL queries leading to crash.

# PoC: http://www.exploit-db.com/sploits/sqlite_browser_db_poc.tar.gz