158 matches found
CVE-2008-1905
CVE-2008-1905 affects NMMediaServer.exe in Nero MediaHome 3.3.3.0 and earlier (as used in Nero 8.3.2.1 and earlier). The vulnerability allows remote denial of service via a crafted request; mode of impact differs from CVE-2007-2322, but both involve NMMediaServer.exe. The CVE description indicate...
CVE-2008-1905
NMMediaServer.exe in Nero MediaHome 3.3.3.0 and earlier, as used in Nero 8.3.2.1 and earlier, allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a long HTTP request to TCP port 54444, a different vector than CVE-2007-2322...
Nero MediaHome NMMediaServer.EXE远程拒绝服务漏洞
BUGTRAQ ID: 28775 Nero MediaHome是Nero套件中的媒体服务器组件,允许在局域网中共享媒体文件。 Nero MediaHome的NMMediaServer.exe服务存在空指针引用漏洞,如果向该服务的默认54444/TCP端口发送了超过3076字节的超长HTTP请求的话,就可以触发这个漏洞,导致服务器崩溃。 Nero MediaHome = 3.3.3.0 Nero ---- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.nero.com perl -e 'print "a"x3077'...
NERO Media Player <= 1.4.0.35b M3U File Buffer Overflow PoC
No description provided by source. NERO Media Player = 1.4.0.35b Remote Buffer Overflow .M3U This exception may be expected and handled. eax=03e90f40 ebx=41414141 ecx=009d01c8 edx=009d015c esi=03e90f38 edi=41414141 eip=7c92b3fb esp=0010bff8 ebp=0010c214 iopl=0 nv up ei pl nz ac pe nc cs=001b...
Buffer overflow
Buffer overflow in NeroMediaPlayer.exe in Nero Media Player 1.4.0.35 and earlier allows remote attackers to execute arbitrary code or cause a denial of service persistent crash via a long URI in a .M3U file...
CVE-2008-0619
Buffer overflow in NeroMediaPlayer.exe in Nero Media Player 1.4.0.35 and earlier allows remote attackers to execute arbitrary code or cause a denial of service persistent crash via a long URI in a .M3U file...
CVE-2008-0619
CVE-2008-0619: Buffer overflow in NeroMediaPlayer.exe (Nero Media Player 1.4.0.35 and earlier) can be triggered by a long URI in an M3U file, enabling remote code execution or a persistent DoS. Related CVE-2008-7079 covers Nero ShowTime 5.0.15.0 via long M3U entries; these issues may be related. ...
CVE-2008-0619
Buffer overflow in NeroMediaPlayer.exe in Nero Media Player 1.4.0.35 and earlier allows remote attackers to execute arbitrary code or cause a denial of service persistent crash via a long URI in a .M3U file...
NERO Media Player <= 1.4.0.35b Remote Buffer Overflow( .M3U)
NERO Media Player = 1.4.0.35b Remote Buffer Overflow .M3U This exception may be expected and handled. eax=03e90f40 ebx=41414141 ecx=009d01c8 edx=009d015c esi=03e90f38 edi=41414141 eip=7c92b3fb esp=0010bff8 ebp=0010c214 iopl=0 nv up ei pl nz ac pe nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000...
nero-dos.txt
NERO Media Player $file" or die "Cannot open $file: $!"; print $FILE "http://"."A" x 700; close$FILE; print "$file has been created \n"; print "Upload it, and open it with Nero Media Player\n"; print "Credits:Securfrog"; Btw , after the crash /if not exploited .../ you wont be able to open Nero...
Nero Media Player buffer overflow
Buffer overflow on M3U files parsing...
NERO Media Player 1.4.0.35b - .m3u File Buffer Overflow (PoC)
NERO Media Player 1.4.0.35b - .m3u File Buffer Overflow PoC NERO Media Player $file" or die "Cannot open $file: $!"; print $FILE "http://"."A" x 700; close$FILE; print "$file has been created \n"; print "Upload it, and open it with Nero Media Player\n"; print "Credits:Securfrog"; Btw , after the...
NERO Media Player <= 1.4.0.35b M3U File Buffer Overflow PoC
Exploit for unknown platform in category dos / poc =========================================================== NERO Media Player $file" or die "Cannot open $file: $!"; print $FILE "http://"."A" x 700; close$FILE; print "$file has been created \n"; print "Upload it, and open it with Nero Media...
NERO Media Player 1.4.0.35b - '.m3u' File Buffer Overflow (PoC)
NERO Media Player $file" or die "Cannot open $file: $!"; print $FILE "http://"."A" x 700; close$FILE; print "$file has been created \n"; print "Upload it, and open it with Nero Media Player\n"; print "Credits:Securfrog"; Btw , after the crash /if not exploited .../ you wont be able to open Nero...
CVE-2007-2322
NMMediaServer.exe in Nero MediaHome 2.5.5.0 and CE 1.3.0.4 allows remote attackers to cause a denial of service NULL dereference and application crash via a crafted packet that contains two CRLF sequences. NOTE: the provenance of this information is unknown; the details are obtained solely from...
Crlf injection
NMMediaServer.exe in Nero MediaHome 2.5.5.0 and CE 1.3.0.4 allows remote attackers to cause a denial of service NULL dereference and application crash via a crafted packet that contains two CRLF sequences. NOTE: the provenance of this information is unknown; the details are obtained solely from...
CVE-2007-2322
Affected software: NMMediaServer.exe in Nero MediaHome 2.5.5.0 and CE 1.3.0.4. Vulnerability details: Remote attacker can cause a denial of service via a crafted packet containing two CRLF sequences (described as a NULL dereference and application crash). This aligns with the CVE-2007-2322 descri...
CVE-2007-2322
NMMediaServer.exe in Nero MediaHome 2.5.5.0 and CE 1.3.0.4 allows remote attackers to cause a denial of service NULL dereference and application crash via a crafted packet that contains two CRLF sequences. NOTE: the provenance of this information is unknown; the details are obtained solely from...