-
-
[原创]Mediacoder 0.7.54792 Buffer Overflow Exploit(SEH)漏洞分析
-
2010-12-2 10:10 6221
-
12月1号从http://www.exploit-db.com/exploits/15630/ 下了11月29号的一个poc简单分析了下,不足的地方望大家多拍砖~~~
#Exploit Title: Mediacode 0.7.5.4792 Buffer Overflow Exploit(SEH)
#Software Link: http://www.mediacoderhq.com/mirrors.htm?file=MediaCoder-0.7.5.4792.exe
#Origianl exploit by 0v3r
#Modified by bestshow
#Test on Windows Xp xp3 CN
#Date: 2010/12/01-2010/12/02
......
测试效果:
添加生成的文件“evil.lst”
鼠标选中该文件则触发计算器:
以下是分析过程:
主要是为了分析触发过程,所以换了个简单的弹出计算器的shellcode。
载入触发文件后,遇到异常,观察此时栈中的情况:
此时的eip = 41414141,esp = 0012f2bc
......
#Exploit Title: Mediacode 0.7.5.4792 Buffer Overflow Exploit(SEH)
#Software Link: http://www.mediacoderhq.com/mirrors.htm?file=MediaCoder-0.7.5.4792.exe
#Origianl exploit by 0v3r
#Modified by bestshow
#Test on Windows Xp xp3 CN
#Date: 2010/12/01-2010/12/02
......
测试效果:
添加生成的文件“evil.lst”
鼠标选中该文件则触发计算器:
以下是分析过程:
主要是为了分析触发过程,所以换了个简单的弹出计算器的shellcode。
载入触发文件后,遇到异常,观察此时栈中的情况:
此时的eip = 41414141,esp = 0012f2bc
......
[培训]《安卓高级研修班(网课)》月薪三万计划,掌握调试、分析还原ollvm、vmp的方法,定制art虚拟机自动化脱壳的方法
赞赏
他的文章
谁下载
kanxue
FishSeeWater
xingbing
zxc
Xacs
vofcrlfopt
9571
larblue
sjclch
amdey
llydd
jinyh
zhuliang
whypro
RuShi
jerrynpc
dzhsurf
坚持到底
相聚经管
Pojiepj
yinning
homk
hwfdvd
lookzo
flyblue
coolwxd
hufo
LeeGzh
suntiger
漂亮宝贝
chfxh
knighthui
taotzu
tfzxyinhao
riusksk
JohnsonGuo
degree
哈哈在世
deppcyan
guobing
xychzq
tangwenbin
chinahanwu
ytfsse
DiYhAcK
笨石头
grantlove
tujunhong
forgives
syziy
GarnettKK
darkplayer
cogito
csgcsg
guxinyi
鴿子
einyboy
xhybb
天行客
中意破解
ConanAI
bestshow
[鬼鬼]
溯雪
zphdebug
犄角旮旯
cnkhaos
yy大雄
kkmylove
pengkaitsj
fog
qilinjiang
olydbg
zhaohongli
coltor
tokiii
深夜寂静
正happy
StudyRush
lifelong
Undocument
hohell
wowapollo
fqhlxw
bitt
hellomike
finsos
精谁
lashoushou
可乐番茄
ProbieTmp
ftyhust
zhuxue
格鲁
wbwubo
dingdangm
刺客L
bignirvana
lyer
谁下载
kanxue
FishSeeWater
xingbing
zxc
Xacs
vofcrlfopt
9571
larblue
sjclch
amdey
llydd
jinyh
zhuliang
whypro
RuShi
jerrynpc
dzhsurf
坚持到底
相聚经管
Pojiepj
yinning
homk
hwfdvd
lookzo
flyblue
coolwxd
hufo
LeeGzh
suntiger
漂亮宝贝
chfxh
knighthui
taotzu
tfzxyinhao
riusksk
JohnsonGuo
degree
哈哈在世
deppcyan
guobing
xychzq
tangwenbin
chinahanwu
ytfsse
DiYhAcK
笨石头
grantlove
tujunhong
forgives
syziy
GarnettKK
darkplayer
cogito
csgcsg
guxinyi
鴿子
einyboy
xhybb
天行客
中意破解
ConanAI
bestshow
[鬼鬼]
溯雪
zphdebug
犄角旮旯
cnkhaos
yy大雄
kkmylove
pengkaitsj
fog
qilinjiang
olydbg
zhaohongli
coltor
tokiii
深夜寂静
正happy
StudyRush
lifelong
Undocument
hohell
wowapollo
fqhlxw
bitt
hellomike
finsos
精谁
lashoushou
可乐番茄
ProbieTmp
ftyhust
zhuxue
格鲁
wbwubo
dingdangm
刺客L
bignirvana
lyer
谁下载
kanxue
FishSeeWater
xingbing
zxc
Xacs
vofcrlfopt
9571
larblue
sjclch
amdey
llydd
jinyh
zhuliang
whypro
RuShi
jerrynpc
dzhsurf
坚持到底
相聚经管
Pojiepj
yinning
homk
hwfdvd
lookzo
flyblue
coolwxd
hufo
LeeGzh
suntiger
漂亮宝贝
chfxh
knighthui
taotzu
tfzxyinhao
riusksk
JohnsonGuo
degree
哈哈在世
deppcyan
guobing
xychzq
tangwenbin
chinahanwu
ytfsse
DiYhAcK
笨石头
grantlove
tujunhong
forgives
syziy
GarnettKK
darkplayer
cogito
csgcsg
guxinyi
鴿子
einyboy
xhybb
天行客
中意破解
ConanAI
bestshow
[鬼鬼]
溯雪
zphdebug
犄角旮旯
cnkhaos
yy大雄
kkmylove
pengkaitsj
fog
qilinjiang
olydbg
zhaohongli
coltor
tokiii
深夜寂静
正happy
StudyRush
lifelong
Undocument
hohell
wowapollo
fqhlxw
bitt
hellomike
finsos
精谁
lashoushou
可乐番茄
ProbieTmp
ftyhust
zhuxue
格鲁
wbwubo
dingdangm
刺客L
bignirvana
lyer
