[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] Compressed files overflow

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: [Full-Disclosure] Compressed files overflow
From: Miguel Tarascó Acuña <tarako@xxxxxxxxx>
Date: Thu, 18 Nov 2004 23:54:10 +0100

Microsoft Windows Vulnerability in Compressed (zipped) Folders  (MS04-034)

attached is a POC of this vulnerability..

How to get new offsets:
  1) attach debugger (i.e ollydbg) to explorer.exe
  2) open the zip file as a folder and add or move some files to it
  3) search in the explorer.exe memory the shellcode and get the addresses

Attachment: ZipMe!.cpp
Description: Binary data

Prev by Date: [Full-Disclosure] [USN-30-1] Linux kernel vulnerabilities
Next by Date: Re: [in] Re: [Full-Disclosure] IE is just as safe as FireFox
Previous by thread: [Full-Disclosure] [USN-30-1] Linux kernel vulnerabilities
Next by thread: [Full-Disclosure] Time Expiry Alogorithm??
Index(es):
- Date
- Thread