MS15-002 Telnet Service Buffer Overflow Vulnerability Analysis and POC Construction

Mo Xiaowen · Posted on 1/16/2015 3:54:02 PM

This post was last edited by Mo Xiaowen on 2015-1-16 15:56

0x00 Vulnerability principle analysis

MS15-002 is a buffer overflow vulnerability in Microsoft's telnet service, and the following is an analysis of its principle and constructing a POC.

https://technet.microsoft.com/zh-CN/library/security/MS15-002

Related Knowledge:

http://drops.wooyun.org/papers/4621

admin · Posted on 1/17/2015 8:10:49 AM

It's not easy to post for the first time

Mo Xiaowen · Posted on 1/18/2015 10:33:03 AM

admin posted on 2015-1-17 08:10
It's not easy to post for the first time

I've posted several times, but I always fail to post, and I don't have the confidence to continue posting... Word limit issue

admin · Posted on 1/18/2015 10:56:20 AM

Mo Xiaowen Posted on 2015-1-18 10:33
I've posted several times, but I always fail to post, and I don't have the confidence to continue posting... Word limit issue

What causes posting failure? What prompt information?

Mo Xiaowen · Posted on 1/18/2015 11:07:49 AM

admin Posted on 2015-1-18 10:56
What causes posting failure? What prompt information?

One is the word limit: Exceeding the maximum word limit of the system One is that the post has a recovery function that automatically converts the code string of letters and symbols into expressions

admin · Posted on 1/18/2015 11:10:18 AM

[Security Vulnerability] MS15-002 Telnet Service Buffer Overflow Vulnerability Analysis and POC Construction

Sections viewed