Advisory To Exploit Using Metasploit

Timbuktu Pro PlughNTCommand Named Pipe Buffer Overflow

Metasploit Logo

_______________________________________________________________
bannedit []
(12/16/2009)

Table of Contents

  • 1. Introduction
  • 2. Digging Into the Advisory
  • 3. Reversing the Vulnerability
    • 3.1 Installing the Software
    • 3.2 Locating the Vulnerable Code
  • 4. Writing the Exploit in Metasploit
    • 4.1 Writing a Trigger
    • 4.2 Controlling the Crash
    • 4.3 Writing the Exploit
  • 5. Conclusion
  • 6. References

Executive Summary

The purpose of this paper is to show the process of taking a vulnerability advisory and turning it into a working real world exploit. To show the process we will be utilizing some tools such as IDA Pro from Hex-Rays, Filemon and PipeList from Microsoft SysInternals, along with the Metasploit Framework. IDA Pro will be used to reverse engineer the application and the Metasploit Framework will be used to test and develop the exploit code. While IDA Pro is the only tool in the arsenal which is a commercial tool it is worth noting that Ollydbg or Windbg could be used for the same reverse engineering process. You could also opt to use the free version of IDA Pro 4.9 available on the Hex-Rays website.

To read more download the PDF adv-to-exp-using-msf.pdf

splash.png - Metasploit Logo (101.5 kB) David Rude, 12/16/2009 09:58 pm

adv-to-exp-using-msf.pdf - PDF Version of the Paper (925.6 kB) David Rude, 12/16/2009 10:57 pm