Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2008-4654 PoC — VLC媒体播放器TY文件处理栈溢出漏洞

Source
https://github.com/Hexastrike/CVE-2008-4654
Associated Vulnerability
Title:VLC媒体播放器TY文件处理栈溢出漏洞 (CVE-2008-4654)
Description:VideoLAN VLC media player是法国VideoLAN组织开发的一款免费、开源的跨平台多媒体播放器(也是一个多媒体框架)。该产品支持播放多种介质(文件、光盘等)、多种音视频格式(WMV, MP3等)等。 VLC媒体播放器的modules\demux\Ty.c文件没有正确地解析的TiVo ty媒体文件,如果用户受骗打开了畸形的媒体文件就会触发栈溢出,导致执行任意指令。
Description
A fully functional exploit for a stack-based buffer overflow vulnerability in VideoLan’s VLC Media Player 0.9.4 when processing TiVo files.
File Snapshot

 [4.0K]  /data/pocs/9aa8002b528d4b41a507cd10ebe0c8f0e09ff330

0 directories, 0 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.