EXPLOITER STAGE
Let’s see the exploiter..
The ie.html file that exploit IE CVE2010-0249 vulnerability
has an obfuscated piece in var sss
that once decoded reveal deobfuscation step needed for decoding external data in what.jpg file (referenced by VAR AH01 to AH06)
to produce the working shellcode (here not yet unescaped):
No comments:
Post a Comment