ms_icc_exp.c提交时间:2005-07-22 提交用户:GunKing 工具分类:攻击程序 运行平台:Windows 工具大小:20944 Bytes 文件MD5 :01c797900a5e2e60936b16ffbaf721e6 工具来源:http://downloads.securityfocus.com/vulnerabilities/exploits/ms_icc_exp.c Microsoft Color Management Module Buffer Overflow Exploit (MS05-036) * * Author: snooq [http://www.redpuffer.net/snooq/web/] * Date: 21 July 2005 * * When I looked at the PoC posted on bugtraq.... * I was basically quite disappointed. The 'PoC' fixed * 'tag count' to a large number.. but this code path * does not seem to be exploitable... GetColorProfileElement * crashes becoz it hits the page boundary while enumerating * the tags...this simply triggers 'Access Violation' before * we even overwrite anything in the memory... >> 下载 << |
