CVE-2007-4939

Media Player Classic < 6.4.9.0 - Heap-Based Buffer Overflow via AVI File Indx Chunk

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-4939. PoCs published by Code Audit Labs.

AI-analyzed exploit summary The provided content describes a vulnerability in Media Player Classic (MPC) related to heap-based buffer overflow and integer overflow issues when handling malformed AVI files. It includes examples of malformed AVI header data that could trigger these vulnerabilities.

Description

Heap-based buffer overflow in mplayerc.exe in Media Player Classic (MPC) 6.4.9.0 and earlier, as used standalone and in mympc (aka CD-Storm) 1.0.0.1, StormPlayer 1.0.4, and possibly other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with an "indx truck size" of 0xffffffff, and certain wLongsPerEntry and nEntriesInuse values.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Code Audit Labs · textdoslinux

https://www.exploit-db.com/exploits/30579

View Code ZIP pw:eip

The provided content describes a vulnerability in Media Player Classic (MPC) related to heap-based buffer overflow and integer overflow issues when handling malformed AVI files. It includes examples of malformed AVI header data that could trigger these vulnerabilities.

Classification

Writeup 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Theoretical

Target: Media Player Classic 6.4.9.0

No auth needed

Prerequisites: User interaction to open a malformed AVI file

MITRE ATT&CK