CVE-2008-0477

Move Media Player - Stack-based Buffer Overflow via QMPUpgrade.Upgrade.1 ActiveX Control

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-0477. PoCs published by Elazar.

AI-analyzed exploit summary This is a buffer overflow exploit targeting the Move Networks Upgrade Manager Control (QMPUpgrade.dll version 1.0.0.1). It uses heap spraying to achieve remote code execution via a malicious HTML file, leveraging two Metasploit-generated shellcodes (calc.exe and bind shell).

Description

Stack-based buffer overflow in the QMPUpgrade.Upgrade.1 ActiveX control in QMPUpgrade.dll 1.0.0.1 in Move Networks Upgrade Manager allows remote attackers to execute arbitrary code via a long first argument to the Upgrade method. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Elazar · htmlremotewindows

https://www.exploit-db.com/exploits/4979

View Code ZIP pw:eip

This is a buffer overflow exploit targeting the Move Networks Upgrade Manager Control (QMPUpgrade.dll version 1.0.0.1). It uses heap spraying to achieve remote code execution via a malicious HTML file, leveraging two Metasploit-generated shellcodes (calc.exe and bind shell).

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Move Networks Upgrade Manager Control (QMPUpgrade.dll) version 1.0.0.1

No auth needed

Prerequisites: Victim must visit a malicious webpage using Internet Explorer 6 on Windows XP SP2 · QMPUpgrade.dll version 1.0.0.1 must be installed

MITRE ATT&CK