Structured-Exception-Handling-SEH-Buffer-Overflow

Contains an exploit code of a SEH attack against the file sharing wizard 1.5.0 application and a report explaining the process

CVE-2019-16724

File Sharing Wizard 1.5.0 allows a remote attacker to obtain arbitrary code execution by exploiting a Structured Exception Handler (SEH) based buffer overflow in an HTTP POST parameter, a similar issue to CVE-2010-2330 and CVE-2010-2331.

SCORE = 9.8 (Critical)

Environment

Attack Machine - Kali Linux

Victim Machine - Windows 7

Vulnerable Application - File sharing wizard V 1.5.0

Note

Reverse shell is bound to a specific IP, inorder to succesfully run the code replace the localhost and generate a new shell

Name	Name	Last commit message	Last commit date
Latest commit History 8 Commits
README.md	README.md
Report .pdf	Report .pdf
fs-wizard-setup.exe	fs-wizard-setup.exe
fs_wizard_exploit.py	fs_wizard_exploit.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

Structured-Exception-Handling-SEH-Buffer-Overflow

CVE-2019-16724

Environment

Note

About

Uh oh!

Releases

Packages

Uh oh!

Languages

Search code, repositories, users, issues, pull requests...

GihanJ/Structured-Exception-Handling-SEH-Buffer-Overflow

Folders and files

Latest commit

History

Repository files navigation

Structured-Exception-Handling-SEH-Buffer-Overflow

CVE-2019-16724

Environment

Note

About

Topics

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Languages

Packages