Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Buffer overflow in Zinf 2.2.1 for Win32

from [Luigi Auriemma] Network Security [Permanent Link]
Subject: Buffer overflow in Zinf 2.2.1 for Win32
Date: Fri, 24 Sep 2004 21:31:02 +0000 

I don't know why this bug has not been tracked but moreover I don't
completely know why it has not been fixed yet in the Windows version of
Zinf.

In short, Zinf is an audio player for Linux and Windows: http://www.zinf.org
The latest Linux version is 2.2.5 while the latest Windows version is 2.2.1
which is still vulnerable to a buffer-overflow bug in the management of the
playlist files ".pls".

This bug has been found and fixed by the same developers in the recent
versions for Linux but, as already said, the vulnerable Windows version is
still downloadable and can be exploited locally and remotely through the web
browser and a malicious pls file.

A simple proof-of-concept to test the bug is available here:

  http://aluigi.altervista.org/poc/zinf-bof.pls

That's all, just to keep track of this bug and to warn who uses the Windows
version.


BYEZ



--- 
Luigi Auriemma
http://aluigi.altervista.org
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: New whitepaper "The Phishing Guide", Seth Arnold
Next by Date:  TSLSA-2004-0049 - apache, Trustix Security Advisor
Previous by Thread:  Re: Microsoft's GDI Detetection Tool faults, John Bissell
Next by Thread:  Re: Buffer overflow in Zinf 2.2.1 for Win32+exploit, iggy popal
Indexes:  [Date] [Thread] [Top] [All Lists]