Microsoft Windows - GDI (CreateDIBPatternBrushPt) Heap Overflow (PoC)

Author: Ac!dDrop
type: dos
platform: windows
port: 
date_added: 2008-08-28 
date_updated: 2016-10-27 
verified: 1 
codes: CVE-2008-1083;OSVDB-44214 
tags: 
aliases: 2008-EMF_DOS.rar 
screenshot_url:  
application_url: 

CreateDIBPatternBrushPt Heap Overflow DOS
By Ac!dDrop



This was tested on


Windows XP Sp2
GDI32.dll 5.1.2600.3099
Internet explorer 6.0.2900.2180



------
Causes Explorer.exe to crash.
and causes Internet explorer to close silently.

------

This is work in progress , i am still trying to make it run arbitary code.


https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/6330.rar (2008-EMF_DOS.rar)

# milw0rm.com [2008-08-29]