| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <ca67aa9e0511010232p5af56ddbja8fe6c02817fe2d3@mail.gmail.com> Date: Tue, 1 Nov 2005 17:32:04 +0700 From: Kira <trir00t@...il.com> To: bugtraq@...urityfocus.com, full-disclosure@...ts.grok.org.uk Subject: Snort Back Orifice Preprocessor Exploit (Win32 targets) Dear All I wrote Snort Back Orifice Preprocessor Exploit for Win32 targets. It's for educational purpose only. This exploit was tested on - Snort 2.4.2 Binary + Windows XP Professional SP1 - Snort 2.4.2 Binary + Windows XP Professional SP2 - Snort 2.4.2 Binary + Windows Server 2003 SP1 - Snort 2.4.2 Binary + Windows Server 2000 SP0 - Snort 2.4.2 Bianry + Windows 2000 Professional SP0 Note 01: This exploit was written in form of MetaSploit module, so you need metasploit to launch it. Note 02: The exploit's quite reliable, but if it doesn't work on your machine, try to find address of 'jmp esp' instruction and replace it to the old return address. Regards, Kira Content of type "text/html" skipped Download attachment "snort_bo_overflow_win32.pm" of type "application/octet-stream" (3507 bytes) _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists