Exploit by ET LoWNOISE Colombia et(at)cyberspace.org Oct/2004 Tested on WIN2K SP4 The exploit takes control by overwriting the pointer of a Structured Exception Handler, installed by WhatsUP and points to a routine that handles exceptions. ([Only registered and activated users can see links] Johnny Cyberpunk THC) The overflow string has to be around 4080 in length to generate an exception that can be manipulated by changing the SEH pointer (ret [815]). Bug Discovered by iDEFENSE Security Advisory 08.25.04 Enjoy!