11 matches found
Alsaplayer < 0.99.80-rc3 - Vorbis Input Local Buffer Overflow Exploit
No description provided by source. I have released this exploit for the alsaplayer bug CVE-2007-5301. You can find all the needed files at http://www.wekk.net/research/CVE-2007-5301/ With my modified version of vorbiscomment, you can generate a ogg exploit like this: whats@debian:$...
Alsaplayer < 0.99.80-rc3 Vorbis Input Local Buffer Overflow Exploit
No description provided by source. I have released this exploit for the alsaplayer bug CVE-2007-5301. You can find all the needed files at http://www.wekk.net/research/CVE-2007-5301/ With my modified version of vorbiscomment, you can generate a ogg exploit like this: whats@debian:$...
Debian DSA-1538-1 : alsaplayer - buffer overrun
Erik Sjolund discovered a buffer overflow vulnerability in the Ogg Vorbis input plugin of the alsaplayer audio playback application. Successful exploitation of this vulnerability through the opening of a maliciously crafted Vorbis file could lead to the execution of arbitrary code. %NASLMINLEVEL...
Alsaplayer < 0.99.80-rc3 Vorbis Input Local Buffer Overflow Exploit
Exploit for linux platform in category local exploits =================================================================== Alsaplayer 0.99.80-rc3 Vorbis Input Local Buffer Overflow Exploit =================================================================== I have released this exploit for the...
[CVE-2007-5301] alsaplayer PoC - exploit
Hello, I have released this PoC for the alsaplayer bug CVE-2007-5301. You can find all the needed files at http://www.wekk.net/research/CVE-2007-5301/ !/bin/sh http://www.wekk.net/research/CVE-2007-5301/CVE-2007-5301-exploit.sh Exploit for alsaplayer before 0.99.80-rc3. Tested with the debian etc...
AlsaPlayer 0.99.80-rc3 - Vorbis Input Local Buffer Overflow
AlsaPlayer 0.99.80-rc3 - Vorbis Input Local Buffer Overflow I have released this exploit for the alsaplayer bug CVE-2007-5301. You can find all the needed files at http://www.wekk.net/research/CVE-2007-5301/ With my modified version of vorbiscomment, you can generate a ogg exploit like this:...
alsaplayer-overflow.txt
I have released this exploit for the alsaplayer bug CVE-2007-5301. You can find all the needed files at http://www.wekk.net/research/CVE-2007-5301/ With my modified version of vorbiscomment, you can generate a ogg exploit like this: whats@debian:$ vorbiscomment.whats -w -t "TITLE=$perl -e 'print...
AlsaPlayer < 0.99.80-rc3 - Vorbis Input Local Buffer Overflow
I have released this exploit for the alsaplayer bug CVE-2007-5301. You can find all the needed files at http://www.wekk.net/research/CVE-2007-5301/ With my modified version of vorbiscomment, you can generate a ogg exploit like this: whats@debian:$ vorbiscomment.whats -w -t "TITLE=$perl -e 'print...
[SECURITY] [DSA 1538-1] New alsaplayer packages fix arbitrary code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1538-1 [email protected] http://www.debian.org/security/ Devin Carraway April 04, 2008 http://www.debian.org/security/faq -...
CVE-2007-5301
CVE-2007-5301 affects Alsaplayer's Ogg Vorbis input plugin. The vulnerability is a buffer overflow in vorbis_stream_info/vorbis_engine.c that can allow remote code execution when a malicious .OGG file with long comments is opened. Debian fixed it in DSA-1538-1 (ups/patches for 0.99.76-9+etch1 and...
CVE-2007-5301
Buffer overflow in the vorbisstreaminfo function in input/vorbis/vorbisengine.c aka the vorbis input plugin in AlsaPlayer before 0.99.80-rc3 allows remote attackers to execute arbitrary code via a .OGG file with long comments...