首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛
  当前位置:主页>安全文章>文章资料>Exploits>文章内容
Green Dam 3.17 (URL) Remote Buffer Overflow Exploit (xp/sp2)
来源:vfocus.net 作者:vfocus 发布时间:2009-06-17  
Green Dam remote buffer overflow exploit
 
"Green Dam" is a software used for monitoring and anti-pornography, popularizing by
Chinese goverment. After July 1st, it will be forced to install on all new Chinese PCs.
Now it already has 50 million copies in China.
In order to monitor the URL that user is exploring, Green Dam injected the browser
process. When Green Dam is trying to handle a long URL, a stack overflow will occur in the
browser process.
This exploit can be used for exploitation on IE, on those computers installed Green Dam.
I used the .net binary to deploy shellcode, for it`s more stable than Heap Spray, and able
to bypass DEP and ASLR on Vista.
The exploit page contains a .net control, so it should be published on IIS.
                        ---seer[N.N.U]

http://milw0rm.com/sploits/2009-green-dam.zip

# [2009-06-12]

 
[推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]  
匿名评论
评论内容:(不能超过250字,需审核后才会公布,请自觉遵守互联网相关政策法规。
 §最新评论:
  热点文章
·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1
  相关文章
·Campus Virtual-LMS (XSS/SQL In
·phpWebThings <= 1.5.2 MD5 Hash
·4images <= 1.7.7 Filter Bypass
·Asterisk IAX2 Resource Exhaust
·Zip Store Chat 4.0/5.0 (Auth B
·Pivot 1.40.4-7 Multiple Remote
·Apple iTunes 8.1.1.10 (itms/it
·TBDev 01-01-2008 Multiple Remo
·Sniggabo CMS (article.php id)
·TransLucid 1.75 Multiple Remot
·Uebimiau Web-Mail <= v3.2.0-1.
·Sniggabo CMS (article.php id)
  推荐广告
CopyRight © 2002-2022 VFocuS.Net All Rights Reserved