Network Security: Detailed info on Re: Microsoft Windows LoadImage API IntegerBuffer overflow

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Bugtraq

[Top] [All Lists]

Re: Microsoft Windows LoadImage API IntegerBuffer overflow

from [Berend-Jan Wever] Network Security

[Permanent Link]

Subject:	Re: Microsoft Windows LoadImage API IntegerBuffer overflow
Date:	Sat, 25 Dec 2004 20:57:41 +0100 (CET)

Since the exploit published by flashsky is a rip off of my IE exploit
script published in the IFRAME exploit, it will probably be caught by some
IDS/AV signatures as being the IFRAME exploit.

Cheers,

SkyLined


    This vul can be exploited, at
http://www.xfocus.net/flashsky/icoExp/index.html ,i give a test
exp(open 28876 port) for windows xp sp1, but it need html sctipt run
and allocate memory.





_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[Full-Disclosure] Re: Re: Microsoft Windows LoadImage API Integer Buffer overflow, flashsky [Full-Disclosure] Re: Re: Microsoft Windows LoadImage API Integer Buffer overflow, Brett Glass Message not available Re: [Full-Disclosure] Re: Re: Microsoft Windows LoadImage API Integer Buffer overflow, Brett Glass Re: Microsoft Windows LoadImage API IntegerBuffer overflow, Berend-Jan Wever <=

Previous by Date:	KDE Security Advisory: kpdf Buffer Overflow Vulnerability, Dirk Mueller
Next by Date:	[Full-Disclosure] Re: Windows (XP SP2) Remote code execution with parameters, ShredderSub7
Previous by Thread:	Re: [Full-Disclosure] Re: Re: Microsoft Windows LoadImage API Integer Buffer overflow, Brett Glass
Next by Thread:	[Full-Disclosure] YET AGAIN Automatic remote compromise of Internet Explorer Service Pack 2 XP SP2, Michael Evanchik
Indexes:	[Date] [Thread] [Top] [All Lists]