Published: 26/03/2009 Updated: 10/10/2018

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 940

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Stack-based buffer overflow in BS.Player (bsplayer) 2.32 Build 975 Free and 2.34 Build 980 PRO and previous versions allows remote malicious users to cause a denial of service (application crash) or execute arbitrary code via a long hostname in a .bsl playlist file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
bsplayer bs.player 2.32
bsplayer bs.player 2.34

<?php /* BsPlayer <= 234 Build 980 (bsl) local buffer overflow 0day exploit (seh) by Nine:Situations:Group::pyrokinesis Overlong hostnames in bsplayer playlist files causes eax and seh handlers to be overwritten Cannot reliably debug with olly because of code compression, just used faultmon/memdump/msfpescan and I choosed the easy/univer ...

#usage: exploitpy print "**************************************************************************" print " BsPlayer 234 (bsl) Universal Seh Overwrite Exploit\n" print " Author : Nine:Situations:Group::pyrokinesis" print " Exploited by : His0k4" print " Tested on: Windows XP Pro SP2 Fr\n" print " Greetings to:" print " All friends & muslim ...

CWE-119 http://www.securityfocus.com/bid/34190 http://retrogod.altervista.org/9sg_bsplayer_seh.html http://secunia.com/advisories/34412 http://www.vupen.com/english/advisories/2009/0800 http://osvdb.org/52841 https://exchange.xforce.ibmcloud.com/vulnerabilities/49342 https://www.exploit-db.com/exploits/8251 https://www.exploit-db.com/exploits/8249 http://www.securityfocus.com/archive/1/502016/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/8249/

CVE-2009-1068

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect