Exploitation Summary
EIP tracks 5 public exploits for CVE-2010-20042.
PoCs published by Metasploit, anT!-Tr0J4n, corelanc0d3r, including Metasploit module exploits/windows/fileformat/xion_m3u_sehbof.
AI-analyzed exploit summary This exploit targets a Unicode stack buffer overflow in Xion Audio Player v1.0.126 via a malformed M3U file, leveraging SEH overwrite and an egghunter for payload execution.
Description
Xion Audio Player versions 1.0.126 and prior are vulnerable to a Unicode-based stack buffer overflow triggered by opening a specially crafted .m3u playlist file. The file contains an overly long string that overwrites the Structured Exception Handler (SEH) chain, allowing an attacker to hijack execution flow and run arbitrary code.
Exploits (5)
This exploit targets a Unicode stack buffer overflow in Xion Audio Player v1.0.126 via a malformed M3U file, leveraging SEH overwrite and an egghunter for payload execution.
This exploit demonstrates a buffer overflow vulnerability in Xion Audio Player 1.0.126 by creating a malicious .m3u8 file with a long string of 'A' characters (3569 bytes). When opened and played in the vulnerable software, it triggers a crash, potentially allowing arbitrary code execution.
This exploit targets a stack-based buffer overflow in Xion 1.0.125 via a maliciously crafted M3U file. It leverages SEH overwrite with Unicode-compatible shellcode to achieve remote code execution.
This exploit generates a maliciously crafted M3U file with an excessively long string to trigger a buffer overflow in Xion Audio Player 1.0.125. The PoC is designed to cause a denial-of-service (DoS) by crashing the application.
This Metasploit module exploits a Unicode stack buffer overflow in Xion Audio Player v1.0.126 via a malformed M3U file, leveraging SEH overwrite and egghunter techniques for reliable payload execution.
References (7)
Scores
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X