Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

Re: Windows 2000 .printer remote overflow proof ofconcept exploit
From: Nobuo Miwa <n-miwa () LAC CO JP>
Date: Thu, 3 May 2001 15:33:45 +0900
Hi,


  http://www.eeye.com/html/research/Advisories/iishack2000.c


That didn't work against Japanese version.
I've tried and got followings ;

   352 of 'a' + 0x7801CB65(address of "call ebx")

It will work against non-SP and SP1.

Cheers,
<Nobuo Miwa> n-miwa () lac co jp       ( @ @ ) http://www.lac.co.jp/security/
-------------------------------o00o--(. .)--o00o--------------------------

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]