Win32hlp exploit for : ":LINK overflow"

From: descript (descriptat_private)
Date: Sat Mar 08 2003 - 16:38:28 PST

Next message: H D Moore: "Re: xscreensaver exploit for Redhat 7.3"

Previous message: tonyat_private: "Re: Why SUID Binary exploit does not yield root shell?"
Next in thread: Rob Shein: "RE: Win32hlp exploit for : ":LINK overflow""
Reply: Rob Shein: "RE: Win32hlp exploit for : ":LINK overflow""
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

hi list,

In date Sunday, 9 March, 2003 1:00 AM s0h released an exploit : Win32hlp exploit for : ":LINK overflow"

Source : http://s0h.cc/exploit/s0h_Win32hlp.c
Binary : http://s0h.cc/exploit/s0h_Win32hlp.exe

Discovered by ThreaT <threatat_private>.
Coded by ThreaT <threatat_private>
Hompage : http://s0h.cc/~threat/

This exploit can trap a .CNT file (file with .HLP files) with the arbitrary code who can download and execute a trojan without user ask.

This exploit was tested on :
	- Windows 2000 PRO/SERVER (fr) SP0
	- Windows 2000 PRO/SERVER (fr) SP1
	- Windows 2000 PRO/SERVER (fr) SP2


Best regards,
descript <descriptat_private>
s0h - Skin of humanity
http://s0h.cc

Next message: H D Moore: "Re: xscreensaver exploit for Redhat 7.3"
Previous message: tonyat_private: "Re: Why SUID Binary exploit does not yield root shell?"
Next in thread: Rob Shein: "RE: Win32hlp exploit for : ":LINK overflow""
Reply: Rob Shein: "RE: Win32hlp exploit for : ":LINK overflow""
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Mar 10 2003 - 14:24:31 PST