关键漏洞信息 漏洞名称 Photodex ProShow Producer 5.0.3256 load file Handling Buffer Overflow 描述 该模块利用了Photodex ProShow Producer v5.0.3256在处理插件加载列表文件时的堆栈缓冲区溢出。攻击者必须将特制的load文件发送给受害者,并将其存储在安装目录中。当再次打开ProShow时,漏洞将被触发。该模块已在Windows XP SP3和Windows 7 SP1上成功测试。 参考资料 OSVDB: 83745 EDB: 19035 URL: http://security.insshell.net/advisory/30 默认选项 EXITFUNC: process Payload配置 Space: 9844 BadChars: "\x00\x0a\x0d" StackAdjustment: -3500 平台与目标 Platform: win Targets: - Photodex ProShow Producer 5.0.3256 / Windows XP SP3 / Windows 7 SP1 - Offset: 9844 - Ret: 0x1022A959 (p/p/r from if.dnt) 其他信息 Privileged: false DisclosureDate: 2012-06-06 DefaultTarget: 0 Reliability: UNKNOWN_RELIABILITY Stability: UNKNOWN_STABILITY SideEffects: UNKNOWN_SIDE_EFFECTS