Microsoft Visual Studio连接器整数溢出漏洞

Microsoft Visual Studio是一款微软公司的开发工具套件系列产品。 在基于COFF符号数量的基础上分配内存时连接器link.exe存在整数溢出，构建特制的PE文件，可触发基于堆的缓冲区溢出。 要成功利用漏洞需要诱使用户通过"dumpbin"或"link /dump"工具处理特制文件。 0 Microsoft Visual Studio 2008 Shell Integrated Mode - ENU 9.0.30729 Microsoft Visual Studio 2008 SP1 Microsoft Visual Studio 2008 9.00.21022.08...

sh3llc0de development and testing in the dumpbin of use-vulnerability warning-the black bar safety net

Of course, based on the MSFMetasploit Frameworkshellcode development of a simple have almost don't you go learn programming on something details, please refer to himself the preparation of the MSF Chinese manual, but for a beginner and like to explore the bottom of the people, The do-it-yourself...