Wednesday, April 6, 2011

Resources

As promised here are some resources you can use to learn more about exploit development:
There are tons of resources within these websites to help you understand and get started writing your own exploits.

    at No comments:

    Saturday, April 2, 2011

    Recipe 2 - CVE-2010-0033 PowerPoint Viewer

    We will be exploiting CVE-2010-0033 in this recipe.  The advisory describes a stack based overflow in PowerPoint Viewer's TextByteAtom record.

    There are public exploits available for this.  I felt it was good to show a SEH based exploit, since the last recipe was a direct EIP overwrite.

    This recipe was tested on Windows Vista 32 bit.

    You will need the following applications/tools to complete this recipe:
    • PowerPoint Viewer (Version 11.0.8164.0, Office 2003) 
    • PowerPoint (For making slides.)
    • Immunity Debugger (1.8 was used)
    • pvefindaddr (Peter Van Eeckhoutte's Immunity Debugger plugin)
    • Metasploit ( For payload generation)
    • Notepad++ (You can use any text editor, I just prefer this one)
    • HxD (You can use any Hex Editor, this is just the one I use)

    Read more »
    at 3 comments:
    Subscribe to: Posts (Atom)