Posts

Showing posts from March, 2013

KNet Web Server Buffer Overflow Exploit (SEH)

Image
This exploit takes advantage of KNet web server buffer overflow vulnerability and attempts to gain SHELL access on target host. See  demo video here. . Exploit:  https://code.google.com/p/yehg-core-exploits/source/browse/trunk/knet-web-server/knet_win7_bof-seh-sploit.rb Demo:  http://core.yehg.net/lab/pr0js/training/view/KNet_Win7_Sploit/ About KNet Web Server: KNet is a small, functioning, webserver which you can use to host a website from your very own harddrive! KNet is so small you can run your server from a floppy disk. As KNet is a freeware application you will never be charged for using the application or for updates.  You can literally have your website up and running within 30 seconds of installing, and running KNet. How's that for ease of use? And you need never see or think about KNet again as it can happily run in your task bar. Here are some key features of "KNet": ■ Custom 404 Error pages. ■ Password protection. ■ Ban IP address...