Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2009-4660 PoC — BigAnt IM HTTP GET请求栈溢出漏洞

Source
https://github.com/war4uthor/CVE-2009-4660
Associated Vulnerability
Title:BigAnt IM HTTP GET请求栈溢出漏洞 (CVE-2009-4660)
Description:BigAnt Messenger是一款可扩展的企业即时通讯平台。 BigAnt服务器的AntServer模块(AntServer.exe)在处理HTTP请求时存在栈溢出漏洞,远程攻击者可以通过向服务器提交超长的HTTP GET请求触发栈溢出,导致执行任意指令。利用一个长GET请求在TCP6660端口上。
Description
CVE-2009-4660 - BigAnt Server 2.52 'USV' Remote Buffer Overflow Vulnerability. Tested on Windows XP Professional SP3.
Readme
# CVE-2009-4660
File Snapshot

 [4.0K]  /data/pocs/9f722d1bb1786b75e5c9a9cd65739c5c671b1c56
├── [2.5K]  Big-Ant-Server_bof_alt.py
├── [2.2K]  Big-Ant-Server_bof.py
└── [  16]  README.md

0 directories, 3 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.