vendor:
Light Alloy
by:
Mike Czumak (T_v3rn1x)
7.5
CVSS
HIGH
SEH Buffer Overflow
CWE
Product Name: Light Alloy
Affected Version From: 4.7.2003
Affected Version To: 4.7.2003
Patch Exists: YES
Related CWE:
CPE:
Platforms Tested: Windows XP SP3
2013
Light Alloy 4.7.3 (.m3u) – SEH Buffer Overflow (Unicode)
This exploit targets a SEH buffer overflow vulnerability in Light Alloy v4.7.3. By creating a specially crafted .m3u file, an attacker can overwrite the SEH handler and execute arbitrary code. The exploit utilizes unicode venetian alignment to bypass memory protections. Once exploited, the payload launches the Windows calculator (calc.exe).
Mitigation:
Upgrade to version 4.7.4 or later, which includes a fix for the vulnerability.