RELEASE: SMB2 REMOTE EXPLOIT (VISTA SP1/SP2) + HACKTRO

Posted On // 2 comments
Today i'm releasing ~1year old (almost) remote exploit for the MS09-050 SMB2
negotiation vulnerability. Since users had almost a year to patch up their
machines and some other remote exploits for this vulnerability are flying
over the internet for a long time already i have decided to release my own.

This exploit uses the trampoline technique that I described in my previous
blog post [1] and it is also a fantastic example of how not^H^H^H to write
exploits. Additionally, to make this one more miserable and yet still funky,
I have attached a brand new 3D HACKTRO (yay!). As always, greetings for all
of the hidden demosceners spending more time bouncing to cracktros than
original games.


Here comes the video capture of the pure-awesome hacktro (low-quality):
http://vimeo.com/14138182

SMB2 HACKTRO - LOW QUALITY from Piotr Bania on Vimeo.



And here is the list of mirrors where you can find exploit src + hacktro
bin:
http://www.piotrbania.com/all/smb2_exploit_mirrors.txt

thank you and have a nice winter!