[20549] in bugtraq
Re: Windows 2000 .printer remote overflow proof ofconcept exploit
daemon@ATHENA.MIT.EDU (Nobuo Miwa)
Thu May 3 18:02:04 2001
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Message-ID: <200105031533.IAI69250.NBXO-J@lac.co.jp>
Date: Thu, 3 May 2001 15:33:45 +0900
Reply-To: Nobuo Miwa <n-miwa@LAC.CO.JP>
From: Nobuo Miwa <n-miwa@LAC.CO.JP>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <200105030428.AAA21235@theta.bos.bindview.com>
Hi,
> http://www.eeye.com/html/research/Advisories/iishack2000.c
That didn't work against Japanese version.
I've tried and got followings ;
352 of 'a' + 0x7801CB65(address of "call ebx")
It will work against non-SP and SP1.
Cheers,
<Nobuo Miwa> n-miwa@lac.co.jp ( @ @ ) http://www.lac.co.jp/security/
-------------------------------o00o--(. .)--o00o--------------------------
