Metasploit mailing list archives
Javascript Shellcode
From: jms at bughunter.ca (J. M. Seitz)
Date: Tue, 20 Feb 2007 15:49:48 -0800
I am not sure if this is the list I should be posting to, but I am curious if any of you have had problems when encoding shellcode inside of javascript (of course I may be a newb here as well). I have an overflow in an ActiveX control, and have overwritten the return address to point to my NOP sled followed by my shellcode. Now without the returnaddress+NOP+shellcode IE crashes (0x90909090) and with it properly aligned IE continues to execute correctly, but no calc.exe love comes up. Are there any characters I should be filtering out on the shellcode generator or any other gotchas I should be aware of when doing this type of work? Any help would be greatly appreciated. JS -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://mail.metasploit.com/pipermail/framework/attachments/20070220/5f5857a5/attachment.htm>
Current thread:
- Javascript Shellcode J. M. Seitz (Feb 20)
- Javascript Shellcode H D Moore (Feb 20)
- Javascript Shellcode Rhys Kidd (Feb 20)
- Javascript Shellcode H D Moore (Feb 20)
- Javascript Shellcode Alexander Sotirov (Feb 20)
- Javascript Shellcode Justin Seitz (Feb 20)
- Javascript Shellcode Rhys Kidd (Feb 20)
- Javascript Shellcode Justin Seitz (Feb 21)
- Javascript Shellcode Rhys Kidd (Feb 20)
- Javascript Shellcode H D Moore (Feb 20)