Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Vulnerability Development: Re: Re: Windows Command Processor CMD.EXE Buffer Overflow

Re: Re: Windows Command Processor CMD.EXE Buffer Overflow

From: <mr.dan.friedman_at_gmail.com>
Date: 24 Oct 2006 20:05:27 -0000
('binary' encoding is not supported, stored as-is) XP SP2 Eng Pr :

EAX 00130041
ECX 00140000 ASCII "Actx "
EDX 0013FDF4 UNICODE
"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"
EBX 77C47FCC msvcrt.wcslen
ESP 0013E4C8
EBP 0013E4C8
ESI 00000000
EDI 00158D60
EIP 77C47EA2 msvcrt.77C47EA2
C 0 ES 0023 32bit 0(FFFFFFFF)
P 1 CS 001B 32bit 0(FFFFFFFF)
A 0 SS 0023 32bit 0(FFFFFFFF)
Z 0 DS 0023 32bit 0(FFFFFFFF)
S 0 FS 003B 32bit 7FFDF000(FFF)
T 0 GS 0000 NULL
D 0
O 0 LastErr ERROR_SUCCESS (00000000)
EFL 00000206 (NO,NB,NE,A,NS,PE,GE,G)
ST0 empty +UNORM 0214 0013F540 00000001
ST1 empty -UNORM B371 7C90E027 00000000
ST2 empty +UNORM 0024 0013F550 00000017
ST3 empty -UNORM B3C1 00159558 00000001
ST4 empty 0.0000000003064981750e-4933
ST5 empty 0.0000000000002388920e-4933
ST6 empty 1.0000000000000000000
ST7 empty 1.0000000000000000000
               3 2 1 0 E S P U O Z D I
FST 4020 Cond 1 0 0 0 Err 0 0 1 0 0 0 0 0 (EQ)
FCW 027F Prec NEAR,53 Mask 1 1 1 1 1 1
Received on Oct 24 2006

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos