Advisory: [AD_LAB-04004]Microsoft Windows LoadImage API Integer Buffer overflow
Class: Boundary Condition Error
DATE:12/20/2004
Remote: Yes, could allow remote compromise
CVE:No
Author:Flashsky
Vulnerable:
Windows NT
Windows 2000 SP0
Windows 2000 SP1
Windows 2000 SP2
Windows 2000 SP3
Windows 2000 SP4
Windows XP SP0
Windows XP SP1
Windows 2003
Unvulnerable:
Windows XP SP2

This is a test exp for windows xp sp1,if it run succeed,it will open 28876 port in your host;
need ie 6 open this page.
if you ie is crashes,don't close this page,use "netstat -an" look info
this is exp not 100% can succeed,if it is not succeed,pleas clear cache and try it again
LoadImage Api OverFlow

---

Advisory: [AD_LAB-04005]Microsoft Windows Kernel ANI File Parsing Crash Vulnerability
Class: Design Error
DATE:12/20/2004
Remote: Yes
CVE:CAN-2004-1305
Author:Flashsky
Vulnerable:
Windows NT
Windows 2000 SP0
Windows 2000 SP1
Windows 2000 SP2
Windows 2000 SP3
Windows 2000 SP4
english Windows XP SP0-sp1
Windows 2003
Unvulnerable:
Windows XP SP2

This is a test code
warning:you host maybe restart!
need ie 6 open this page.
ani kernel blue vul

---

Advisory: [AD_LAB-04005]Microsoft Windows Kernel ANI File Parsing Dos Vulnerability
Class: Design Error
DATE:12/20/2004
Remote: Yes
CVE:CAN-2004-1305
Author:Flashsky
Vulnerable:
Windows NT
Windows 2000 SP0
Windows 2000 SP1
Windows 2000 SP2
Windows 2000 SP3
Windows 2000 SP4
english Windows XP SP0-sp1
Windows 2003
Unvulnerable:
Windows XP SP2

This is a test code
warning:you host maybe restart!
need ie 6 open this page.
ani kernel dos vul

---

Advisory: [AD_LAB-04006]Microsoft Windows winhlp32.exe Heap Overflow and Integer Buffer overflow Vulnerability
Class: Boundary Condition Error
DATE:12/20/2004
Remote:
CVE:CAN-2004-1306
Author:Keji
Vulnerable:
Windows NT
Windows 2000 SP0
Windows 2000 SP1
Windows 2000 SP2
Windows 2000 SP3
Windows 2000 SP4
Windows XP SP0
Windows XP SP1
Windows 2003
Windows XP SP2
Unvulnerable:
UnKnow

Heap Overflow demo
Integer Buffer overflow demo