Compressed files overflow

[Miguel Tarascó Acuña <tarako () gmail com>]

Microsoft Windows Vulnerability in Compressed (zipped) Folders  (MS04-034)

attached is a POC of this vulnerability..

How to get new offsets:
  1) attach debugger (i.e ollydbg) to explorer.exe
  2) open the zip file as a folder and add or move some files to it
  3) search in the explorer.exe memory the shellcode and get the addresses

Attachment: ZipMe!.cpp
Description: