CCMPlayer Stack based Buffer Overflow (CVE-2011-5170)

A stack buffer overflow vulnerability has been reported in CCMPlayer 1.5. The vulnerability is due to a lack of boundary check when handling M3U files. Successful exploitation could allow arbitrary code execution in the context of the target user...

CVE-2011-5170

CVE-2011-5170 is a stack-based buffer overflow in Castillo Bueno Systems’ CCMPlayer 1.5 triggered by a long track name in an M3U playlist, enabling remote code execution. The connected documents confirm the vulnerability details and show public exploit activity, including a Metasploit module for ...

CCMPlayer 1.5 m3u Playlist Stack Based Buffer Overflow

This module exploits a stack based buffer overflow in CCMPlayer 1.5. Opening a m3u playlist with a long track name, a SEH exception record can be overwritten with parts of the controllable buffer. SEH execution is triggered after an invalid read of an injectable address, thus allowing arbitrary...

CVE-2011-5170

creationtimestamp| type| source ---|---|--- 2011-11-30 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/18178 2011-12-03 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/18195 2018-05-29 15:50:33+00:00| seen|...