Home page logo
/

metasploit logo Metasploit mailing list archives

Javascript Shellcode
From: jms at bughunter.ca (J. M. Seitz)
Date: Tue, 20 Feb 2007 15:49:48 -0800

I am not sure if this is the list I should be posting to, but I am curious
if any of you have had problems when encoding shellcode inside of javascript
(of course I may be a newb here as well). I have an overflow in an ActiveX
control, and have overwritten the return address to point to my NOP sled
followed by my shellcode. Now without the returnaddress+NOP+shellcode IE
crashes (0x90909090) and with it properly aligned IE continues to execute
correctly, but no calc.exe love comes up.
 
Are there any characters I should be filtering out on the shellcode
generator or any other gotchas I should be aware of when doing this type of
work? Any help would be greatly appreciated.
 
JS
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.metasploit.com/pipermail/framework/attachments/20070220/5f5857a5/attachment.htm>


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]