Follow us on Twitter!
It is the path of least resistance that makes rivers and men crooked. - Bj Palmer
Sunday, December 11, 2016
Navigation
Home
 Find:
 Information:
Learn
Communicate
Submit
Shop
Challenges
 Exploit:
 Programming:
 Think:
 Track:
 Patch:
 Other:
 Need Help?
Other
Members Online
Total Online: 37
Guests Online: 35
Members Online: 2

Registered Members: 96896
Newest Member: andrea256
Latest Articles
View Thread

HellBound Hackers | Computer General | OS specific

Author

cmd.exe buffer overflow


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 06-01-07 02:08
This is probably very useless considering to run cmd.exe remotely you'd already need to have access, but I found cmd.exe has a buffer overflow vuln. I havn't tested it too far, but i copied 570 A's into cmd.exe and corrupted the stack by just a lot. Writing out code for this shouldn't be too hard if you know basic programming in C, so I'll leave that part up to you.

I guess this could be used in a floppy to gain quick admin on a machine at school or w/e if you find or write up some shellcode, but any more possibilities for this are beyond me. So, if anything you walk away with the knowledge that windows has one more reason to suck.