Re: Microsoft Media Player ASX Parser buffer overflow vulnerability

From: ByteRage (byterageat_private)
Date: Sun May 06 2001 - 11:13:15 PDT

Next message: venomous: "another exploit for cfingerd."

Previous message: ByteRage: "Re: Winamp 2.6x / 2.7x buffer overflow"
In reply to: Pauli Ojanpera: "Microsoft Media Player ASX Parser buffer overflow vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I found yet another bof condition in the ASX VERSION
tag : an *.ASX file with the contents :

<ASX VERSION="AAAAAAAAAAA ... AAAAAAA">

crashes MPLAYER 6.4 in dxmasf.dll...

greetz,
[ByteRage] <byterageat_private>
http://elf.box.sk/byterage

> REVELATION:
>
> HREF attribute of BANNER tag can be abused to smash
> our lovely stack.
>
> This information applies to Media Player 6.4 at
> least.

__________________________________________________
Do You Yahoo!?
Yahoo! Auctions - buy the things you want at great prices
http://auctions.yahoo.com/

Next message: venomous: "another exploit for cfingerd."
Previous message: ByteRage: "Re: Winamp 2.6x / 2.7x buffer overflow"
In reply to: Pauli Ojanpera: "Microsoft Media Player ASX Parser buffer overflow vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri May 11 2001 - 08:23:28 PDT