Government Security
Network Security Resources

Jump to content

Photo

Shixxnote 6.net, Remote Buffer Overflow Exploit

- - - - - buffer overflow bug exploit shell
  • Please log in to reply
14 replies to this topic

#1 [N0N4M3]

[N0N4M3]

    Private First Class

  • Members
  • 74 posts

Posted 02 November 2004 - 03:44 PM

Infos:

Stack based overflow, bug discovered by Luigi Auriemma aluigi.altervista.org
Tested working on Win2K, This public version crash on any WinXP, read the code why.
The exploit bind a shellcode on the victim port 101.

Code: C

Date: October/2004

EXPLOIT v0.1: CLICK HERE( ZIP Passwd: jhdj654g!qoipeopio@quhguHHdhf )

ShixxNote 6.net: CLICK HERE( for the tests only! )

#2 Nikscap

Nikscap

    Private

  • Members
  • 19 posts

Posted 02 November 2004 - 04:59 PM

lol ^^ Copy/past from http://dfind.kd-team.com/36/55/op.php

huhu

#3 tnp

tnp

    Private First Class

  • Members
  • 38 posts

Posted 02 November 2004 - 05:17 PM

lol ^^ Copy/past from http://dfind.kd-team.com/36/55/op.php

huhu

<{POST_SNAPBACK}>

and? just input nothing more

#4 ZoraX

ZoraX

    Specialist

  • Members
  • 149 posts

Posted 03 November 2004 - 12:43 AM

Tested this localy on a win2k pc i have, dident get a shell on port 101, is it just me? cus this is the second sploit i dont get shell on when testing em localy this week:(

#5 djnovell

djnovell

    Private

  • Members
  • 4 posts

Posted 03 November 2004 - 01:26 AM

is the standart port for this application 2000 ? and thx for the files... :)

#6 SkitZZ

SkitZZ

    Specialist

  • Members
  • 139 posts

Posted 03 November 2004 - 01:49 AM

Tested this localy on a win2k pc i have, dident get a shell on port 101, is it just me? cus this is the second sploit i dont get shell on when testing em localy this week:(

<{POST_SNAPBACK}>

I get a shell every time i try on Win2k SP4 English running in VMware :o

Pid  Process            Port  Proto Path
732  ShixxNote      ->  101  TCP  C:\Program Files\ShixxNOTE\ShixxNote.exe
416  svchost        ->  135  TCP  C:\WINNT\system32\svchost.exe
8    System        ->  139  TCP
8    System        ->  445  TCP
524  MSTask        ->  1025  TCP  C:\WINNT\system32\MSTask.exe
8    System        ->  1026  TCP
732  ShixxNote      ->  2000  TCP  C:\Program Files\ShixxNOTE\ShixxNote.exe


SkitZZ

#7 [N0N4M3]

[N0N4M3]

    Private First Class

  • Members
  • 74 posts

Posted 03 November 2004 - 10:52 AM

exactely for the copy pas, but i love distribut all composant for you :)

#8 DrGonZ0

DrGonZ0

    Private

  • Members
  • 2 posts

Posted 03 November 2004 - 06:47 PM

that's why u post the zip password
credibility...
(filtered) lamer

#9 Guest_101_*

Guest_101_*
  • Guests

Posted 04 November 2004 - 05:07 AM

exactely for the copy pas, but i love distribut all composant for you :)

<{POST_SNAPBACK}>


[n0n4m3] its not in the forum rules to spread of compiled version of already existing exploits, and this exploit, I'm 100% sure that the members already got it from my post here cos i coded this exploit and posted it here the same day...

and so, I tried to code it the best way to not give you compilations error, the one wich can't compile shouldnt use it thats all, no need to spread a win32 version.

#10 [N0N4M3]

[N0N4M3]

    Private First Class

  • Members
  • 74 posts

Posted 04 November 2004 - 10:28 AM

Sorry 101 :unsure:

#11 H3wo

H3wo

    Private

  • Members
  • 5 posts

Posted 04 November 2004 - 10:38 AM

nice job man

going to try to get some shells :)

== i will keep your guys in touch ==

#12 Source

Source

    Private

  • Members
  • 16 posts

Posted 06 November 2004 - 07:17 AM

What port does ShixxNote run on


is it 2000?

Cheers

#13 mortello

mortello

    Staff Sergeant

  • Members
  • 408 posts

Posted 06 November 2004 - 04:04 PM

What port does ShixxNote run on


is it 2000?

Cheers

<{POST_SNAPBACK}>


Learn to read....and then try using this program....not use this program and then learn to read (its in this thread, earlier in fact)

#14 Guest_blahplok_*

Guest_blahplok_*
  • Guests

Posted 07 November 2004 - 05:06 AM

sorry for my stupid question
how i can find server running ShixxNote....?
is't only scan port 2000..????
are any other way to get info about server running ShixxNote..??
help please

#15 shixx

shixx

    Private

  • Members
  • 1 posts

Posted 31 October 2012 - 02:57 AM

[n0n4m3] its not in the forum rules to spread of compiled version of already existing exploits, and this exploit, I'm 100% sure that the members already got it from my post here cos i coded this exploit and posted it here the same day...

and so, I tried to code it the best way to not give you compilations error, the one wich can't compile shouldnt use it thats all, no need to spread a win32 version.


Hello folks,

I wrote ShixxNOTE program complete source code and you wrote exploit which work only on versions of ShixxNOTE 6.net released before 2006. Because of you guys I still didn't change the version name. So if you have ShixxNOTE 6.net installed you must know which build you have. Current build is 135 (change log), and your exploit doesn't work more than 6 years. I tested it and I released fix. So now you should write new exploit because this one doesn't work any more

Kind regards,

Ozren Sirola
admin@shixxnote.com
ShixxNOTE Program Developer





Also tagged with one or more of these keywords: buffer overflow, bug, exploit, shell