Sam Hawker wmcdplay 1.0 beta1-2 - Local Buffer Overflow (2)

EDB-ID:

19803




Platform:

Linux

Date:

2000-03-13


Become a Certified Penetration Tester

Enroll in Penetration Testing with Kali Linux , the course required to become an Offensive Security Certified Professional (OSCP)

GET CERTIFIED

source: https://www.securityfocus.com/bid/1047/info
 
wmcdplay is cdplayer generally used with the WindowMaker X11 window-manager on unix systems. While wmcdplay is rarely installed at all by default, when it is installed it is typically set setuid root. wmcdplay is vulnerable to a buffer overflow attack due to lack of bounds checking on an argument it is passed. As a result, a local user can elevate their priviliges to root through overruning the stack and executing arbitrary code with the effective user-id of the process (root).

https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/19803.tar.gz