CVE-2009-1330
Easy RM to MP3 Converter - Stack-based Buffer Overflow via Long Filename in Playlist File
Title source: llmExploitation Summary
EIP tracks 13 public exploits for CVE-2009-1330. PoCs published by Fitzl Csaba, Oh Yaw Theng, bibi-info.
AI-analyzed exploit summary This exploit leverages a buffer overflow in Easy RM to MP3 Converter 2.7.3.700 via a malformed .m3u file, bypassing DEP and ASLR with a ROP chain to achieve arbitrary code execution. The ROP chain is meticulously crafted to call VirtualAlloc and execute shellcode.
Description
Stack-based buffer overflow in Easy RM to MP3 Converter allows remote attackers to execute arbitrary code via a long filename in a playlist (.pls) file.
Exploits (13)
This exploit leverages a buffer overflow in Easy RM to MP3 Converter 2.7.3.700 via a malformed .m3u file, bypassing DEP and ASLR with a ROP chain to achieve arbitrary code execution. The ROP chain is meticulously crafted to call VirtualAlloc and execute shellcode.
This exploit leverages a local buffer overflow in Easy RM to MP3 2.7.3.700 via crafted .m3u (or other supported) playlist files to achieve remote code execution by overwriting the EIP register and executing shellcode.
This exploit leverages a buffer overflow vulnerability in Easy RM to MP3 Converter 27.3.700 by crafting a malicious .m3u file. The payload overwrites the EIP with a kernel32.dll address and executes a calc.exe payload via alphanumeric shellcode.
This exploit targets a buffer overflow vulnerability in Easy RM to MP3 27.3.700 by crafting a malicious .m3u file with a long string of 'A's to overwrite the EIP and redirect execution to a shellcode that launches calc.exe.
This exploit targets a stack overflow vulnerability in Easy RM to MP3 Converter by crafting a malicious .pls file with a long string to overwrite the EIP and execute shellcode. The shellcode is designed to spawn a reverse shell or execute arbitrary commands.
This Perl script generates a malicious .M3U file that triggers a local stack overflow in WM Downloader when parsed. The exploit leverages a buffer overflow vulnerability (CVE-2009-1329) by crafting an overly long HTTP URL in the M3U file, leading to arbitrary code execution.
This Perl script generates a malicious .M3U file that triggers a local stack overflow in RM Downloader when parsed. The exploit uses a long HTTP URL (26109 'A' characters) to overwrite the EIP register, demonstrating a classic buffer overflow vulnerability.
This Perl script generates a malicious .M3U file that triggers a local stack overflow in Mini-stream RM-MP3 Converter when parsed. The exploit uses a long HTTP URL string (26121 'A' characters) to overwrite the stack, leading to arbitrary code execution (EIP control).
This Perl script generates a malicious .M3U file that triggers a local stack overflow in Mini-stream Ripper when opened. The exploit uses a long HTTP URL (26129 'A' characters) to overwrite the stack, leading to arbitrary code execution.
This Perl script generates a malicious .M3U file that triggers a local stack overflow in ASX to MP3 Converter when processed. The exploit uses a long HTTP URL string (26121 'A' characters) to overwrite the stack, leading to arbitrary code execution (EIP control).
This repository contains a functional exploit for CVE-2009-1330, targeting a buffer overflow vulnerability in Easy RM to MP3 Converter 2.7.3.700 via a maliciously crafted .m3u file. The exploit includes shellcode and a DEP/ASLR bypass technique using a 'push esp; ret' gadget.
This repository contains a functional Python exploit for CVE-2009-1330, targeting a buffer overflow vulnerability in Easy RM to MP3 Converter. The exploit generates a malicious .m3u file with a crafted payload to achieve remote code execution via a JMP ESP instruction in MSRMCcodec02.dll.
This repository contains a functional exploit for CVE-2009-1330, a buffer overflow vulnerability in Easy RM to MP3 Converter 2.7.3.700. The exploit uses a crafted M3U file to trigger the overflow, execute shellcode via a ROP gadget, and establish a reverse TCP shell.