vendor:
RM Downloader
by:
Vinod Sharma
9.3
CVSS
HIGH
Stack Overflow
119
CWE
Product Name: RM Downloader
Affected Version From: 3.0.2.1
Affected Version To: 3.0.2.1
Patch Exists: Yes
Related CWE: N/A
CPE: a:rm-to-mp3:rm_downloader
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Windows XP SP2
2009
RM Downloader 3.0.2.1(.M3U File) Stack Overflow exploit
This exploit is for RM Downloader 3.0.2.1, a software used to convert RM files to MP3. The vulnerability is a stack overflow which occurs when a specially crafted .M3U file is opened. The exploit code contains a jmp esp from RDcodec02.dll, followed by 256 bytes of NOPs, 8 bytes of NOPs, 100 bytes of NOPs, and a shellcode which executes calc.exe.
Mitigation:
Update to the latest version of RM Downloader 3.0.2.1