SQLite Browser 2.0b1 - Local Denial of Service

EDB-ID:

11342

CVE:

N/A


Platform:

Windows

Published:

2010-02-06

# Exploit Title: SQLite Browser 2.0b1 Local DoS Vulnerability
# Author: Nishant Das Patnaik
# Tested on: Windows XP SP2/SP3 (x86), Vista (x86), Windows 7 (x64)
# Code : A specially crafted SQL file query can cause the the application to freeze and finally crash. The bug is the SQL query processor engine, it can't handle malformed SQL queries leading to crash.

# PoC: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/11342.tar.gz (sqlite_browser_db_poc.tar.gz)