Oracle Java SE MixerSequencer Object GM_Song Remote Code Execution (CVE-2010-0842)

A remote code execution vulnerability exists in Oracle Java SE 6u18 and prior. The vulnerability is caused by running specially crafted MIDI file within an RMF File. A remote attacker can exploit this issue by enticing a user to open a specially crafted file...

Java MixerSequencer Object GM_Song Structure Handling Vulnerability

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

Java MixerSequencer Object - GM_Song Structure Handling (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "Java MixerSequenc...

Java MixerSequencer Object GM_Song Structure Handling Vulnerability

This module exploits a flaw within the handling of MixerSequencer objects in Java 6u18 and before. Exploitation id done by supplying a specially crafted MIDI file within an RMF File. When the MixerSequencer objects is used to play the file, the GMSong structure is populated with a function pointe...