CVE-2008-0625

CVE-2008-0625 is a buffer overflow in Yahoo! Music Jukebox MediaGrid ActiveX (mediagrid.dll) that allows remote code execution when a user loads a page calling AddBitmap with a long argument in Yahoo! Music Jukebox 2.2.2.56. Exploitation requires the user to view a crafted page in Internet Explor...

[Full-disclosure] Yahoo! JukeBox MediaGrid ActiveX Control AddBitmap() Buffer Overflow

Who: Yahoo! http://www.yahoo.com What: mediagrid.dll version 2.2.2.56 22FD7C0A-850C-4A53-9821-0B0915C96139 Implements IObjectSafety This control is used with the Yahoo! JukeBox application. How: The 2nd parameter of the AddBitmap method is vulnerable to a buffer overflow. Fix: No official fix kno...

yahoomusic-overflow2.txt

Yahoo! JukeBox MediaGrid ActiveX Control mediagrid.dll AddBitmap Buffer Overflow Exploit function Check // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2 http://metasploit.com var shellcode1 = unescape"%u03eb%ueb59%ue805%ufff8%uffff%u4949%u4949%u4949" +...

Yahoo! JukeBox MediaGrid ActiveX mediagrid.dll AddBitmap() BOF Exploit

Exploit for unknown platform in category remote exploits ====================================================================== Yahoo! JukeBox MediaGrid ActiveX mediagrid.dll AddBitmap BOF Exploit ====================================================================== Yahoo! JukeBox MediaGrid...

Yahoo! JukeBox MediaGrid - AddBitmap() ActiveX Buffer Overflow

Yahoo! JukeBox MediaGrid - AddBitmap ActiveX Buffer Overflow Yahoo! JukeBox MediaGrid ActiveX Control mediagrid.dll AddBitmap Buffer Overflow Exploit function Check // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2 http://metasploit.com var shellcode1 =...