Home page logo

fulldisclosure logo Full Disclosure mailing list archives

"WinProxy 6.0 R1c" Remote Stack/SEH Overflow Exploit
From: "FistFucker" <FistFuXXer () gmx de>
Date: Sat, 7 Jan 2006 19:19:33 +0100

The PoC exploit for this issue is attached to this e-mail. It has been
successfully tested under Microsoft Windows XP Professional (german, SP2).
Remote attackers can bypass the SEH frames protection of the operating
system by calling a POP/POP/RET sequence in the dynamic link libraries of
the Panda Antivirus scanning engine.

-FistFucker (aka FistFuXXer)

Attachment: CAN-2005-4085_exploit.pl

Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
  • "WinProxy 6.0 R1c" Remote Stack/SEH Overflow Exploit FistFucker (Jan 07)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]