Corelan — Tutorial 7 — Exercise Solution

At the end of the Exploit writing tutorial part 7 : Unicode — from 0×00410041 to calc by the Corelan Team there is an exercise which challenges readers to complete an unfinished exploit of AIMP2.

For the sake of completeness, I will document the complete steps from vulnerability discovery to the complete solution. If you would like to skip to the actual solution feel free to go to the One step forward two steps back section below.

The Challenge