- Peter Van Eeckhoutte's Blog
- IT-Sec-Catalog Exploitation Wiki
- Myne-us - A Journey Into Exploitation
- Shell-Storm
Wednesday, April 6, 2011
Resources
As promised here are some resources you can use to learn more about exploit development:
Saturday, April 2, 2011
Recipe 2 - CVE-2010-0033 PowerPoint Viewer
We will be exploiting CVE-2010-0033 in this recipe. The advisory describes a stack based overflow in PowerPoint Viewer's TextByteAtom record.
There are public exploits available for this. I felt it was good to show a SEH based exploit, since the last recipe was a direct EIP overwrite.
This recipe was tested on Windows Vista 32 bit.
You will need the following applications/tools to complete this recipe:
- PowerPoint Viewer (Version 11.0.8164.0, Office 2003)
- PowerPoint (For making slides.)
- Immunity Debugger (1.8 was used)
- pvefindaddr (Peter Van Eeckhoutte's Immunity Debugger plugin)
- Metasploit ( For payload generation)
- Notepad++ (You can use any text editor, I just prefer this one)
- HxD (You can use any Hex Editor, this is just the one I use)
Subscribe to:
Posts (Atom)