Microsoft Visual Basic 6.0 Project (Description) Stack overflow PoC
VB6.0のプロジェクトのDescriptionにスタックオーバーフローの脆弱性が存在するそうです。
#Details: # Microsoft Visual Basic 6.0 IDE crashes while parsing the project detail's field when characters more then 1037690 are provided, # causing stack overflow (vuln1.vbp in attached file). The data is stored as UNICODE means that Shellcode can be injected in unicode manner # to escilate previledges. # As soon as the stack get overflow, an exception occur and NTDLL start handling it => means that SEH based exploitation will work. # Offset is mentioned above at which IDE crash. Register EBX contain the malicious values. # Memory address at which the malicous data (Project detail) are dumped is: 03EF0189 and on words.