|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: ms03-049 exploit xp sp0
From: upb (upb
email.ee)
Date: Wed Nov 12 2003 - 19:25:25 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Umm, this is what u get when ur tired :P
----- Original Message -----
From: "upb" <upbemail.ee>
> 00000000: EB14 jmps 000000016
> 00000002: 832C2440 sub d,[esp],040 ;""
> 00000006: E8F5FFFFFF call 000000000
That code was supposed to be:
00000000: EB05 jmps 000000007
00000002: 832C2440 sub d,[esp],040 ;""
00000006: C3 retn
00000007: E8F6FFFFFF call 000000002
And ofcourse the shortest way to jump back is by using the "jmp" instruction
:)
00000004: E9F7FFFFFF jmp 000000000
or
00000004: EBFA jmps 000000000
upb
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]