Home page logo

fulldisclosure logo Full Disclosure mailing list archives

Compressed files overflow
From: Miguel Tarascó Acuña <tarako () gmail com>
Date: Thu, 18 Nov 2004 23:54:10 +0100

Microsoft Windows Vulnerability in Compressed (zipped) Folders  (MS04-034)

attached is a POC of this vulnerability..

How to get new offsets:
  1) attach debugger (i.e ollydbg) to explorer.exe
  2) open the zip file as a folder and add or move some files to it
  3) search in the explorer.exe memory the shellcode and get the addresses

Attachment: ZipMe!.cpp

  By Date           By Thread  

Current thread:
  • Compressed files overflow Miguel Tarascó Acuña (Nov 19)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]