|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[Full-Disclosure] Compressed files overflow
From: Miguel Tarascó Acuña (tarako
gmail.com)
Date: Thu Nov 18 2004 - 16:54:10 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Microsoft Windows Vulnerability in Compressed (zipped) Folders (MS04-034)
attached is a POC of this vulnerability..
How to get new offsets:
1) attach debugger (i.e ollydbg) to explorer.exe
2) open the zip file as a folder and add or move some files to it
3) search in the explorer.exe memory the shellcode and get the addresses
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
- application/octet-stream attachment: ZipMe_.cpp
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]