CVE-2009-1330 PoC — Mini-stream Easy RM to MP3 Converter播放列表文件处理栈溢出漏洞

Source

https://github.com/adenkiewicz/CVE-2009-1330

Associated Vulnerability

Title:Mini-stream Easy RM to MP3 Converter播放列表文件处理栈溢出漏洞 (CVE-2009-1330)
Description:Mini-stream是一家专业的音频抓轨和格式转换软件厂商。 Mini-stream Easy RM to MP3 Converter音频转换软件没有正确地处理.pls和.m3u播放列表文件。如果用户受骗加载了恶意播放列表文件的话，就可能触发栈溢出，导致执行任意代码。

Description

Simple exploit for Easy RM to MP3 Converter 2.7.3.700 on Windows 7 32b.

Readme

# CVE-2009-1330

Exploit for buffer overflow in Easy RM to MP3 Converter 2.7.3.700 (CVE-2009-1330)

Based on:
* pwntools
* msfvenom / reverse\_tcp payload
* ropper
* x64dbg
* Easy RM to MP3 Converter 2.7.3.700

Vulnerable app available at https://www.exploit-db.com/exploits/10374

File Snapshot


 [4.0K]  /data/pocs/8d9d010675c5a8041ff0a11a91b529d918ba2705
├── [3.2K]  main.py
└── [ 281]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!