In these two videos, we will demonstrate how to write an exploit of the Structured Exception Handler. The video assumes you already understand how SEH and exploits work.

We will exploit an Easy Chat Server using OllyDbg. First we will use a skeleton of an exploit to find a SEH and then insert the actual shell code to add a new user with administrative rights using Cygwin Shell, a Metasploit utility.

Enjoy.

Part 1:

Part 2: