CVE-2008-4087

Acoustica Beatcraft 1.02 Build 19 - Stack-Based Buffer Overflow via Long Instruments Title Field

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-4087. PoCs published by Koshi.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Acoustica Beatcraft v1.02 Build 19 by crafting a malicious .bcproj file. It uses a JMP ESP technique to redirect execution to shellcode, which spawns a calculator (calc.exe) as a proof-of-concept payload.

Description

Stack-based buffer overflow in Acoustica Beatcraft 1.02 Build 19 allows user-assisted attackers to cause a denial of service or execute arbitrary code via a Beatcraft Project (aka bcproj) file with a long string in a certain instruments title field.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Koshi · perllocalwindows

https://www.exploit-db.com/exploits/6333

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Acoustica Beatcraft v1.02 Build 19 by crafting a malicious .bcproj file. It uses a JMP ESP technique to redirect execution to shellcode, which spawns a calculator (calc.exe) as a proof-of-concept payload.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Racy

Target: Acoustica Beatcraft v1.02 Build 19

No auth needed

Prerequisites: Victim must open the malicious .bcproj file within Acoustica Beatcraft

MITRE ATT&CK