Stack overflow in vbe6.dll, (used by all versions of MS Office)
The overflow occurs in Visual Basic for Application.
Creating a property with a long name ( about 247 chars) results in a stack overflow in vbe6.dll which overwrites with a null byte the first byte of the return address.
Probably impossible to exploit, but who knows? ^^ At least, 阅读全文 »
Tags: Exploit, PoC, Visual Basic来源:milw0rm
#!/usr/bin/perl
#' ++ Microsoft Visual Basic 6.0 Code Execution 0-Day ++
#' ++++++++++++++++++++++++++++++++++++++++++++++++++++++
#'++ Author: Koshi +
#'++ Email: heykoshi at gmail dot com +
#'++ Application: Microsoft Visual Basic 6.0 +
#'++ 阅读全文 »
作者:眼镜(游戏外挂研究院)
来源:JiaJia's Home
需要工具:
VB6企业版(盗版)/VB6精装版
CE(英文或汉化)
一,打开游戏和CE用CE载入游戏
二,让你的血量回到最满状态,记住血量值
如上图,我的是1312点血,好的,用CE搜"1312",.
用"Exact value"方式,4字节
搜到N个址,好,再回到游戏里,我们让人物掉点血(打怪什么的,最好多掉点,这样方便后面来查数),再用"Decreased 阅读全文 »
鬼仔注:两个都是VB的,就放到一篇日志里发了。
1、Microsoft Visual Basic 6.0 Project (Company Name) Stack overflow PoC
2、Microsoft Visual Basic 6.0 Project (Description) Stack overflow PoC
来源:milw0rm
Microsoft Visual Basic 6.0 Project (Company Name) Stack overflow PoC
阅读全文 »
