CVE-2013-7409

This Metasploit module exploits a stack-based buffer overflow in ALLPlayer 2.8.1 via a crafted .M3U file. It leverages a long string in a playlist entry to achieve arbitrary code execution on Windows 7 SP1.

This exploit leverages a buffer overflow vulnerability in ALLPlayer 5.8.1 via a crafted .m3u file, overwriting the SEH handler to execute arbitrary shellcode (calc.exe). The payload uses a unicode-mixed encoder to bypass basic protections.

This exploit targets a SEH buffer overflow vulnerability in ALLPlayer 5.7 via a maliciously crafted .m3u file. It leverages Unicode-friendly shellcode to execute calc.exe, demonstrating arbitrary code execution.

This exploit targets a SEH buffer overflow vulnerability in ALLPlayer 5.6.2 via a crafted .m3u file. It uses Unicode-compatible shellcode to execute calc.exe, leveraging a pop-pop-ret gadget for control flow redirection.

This is a Python script generating a malformed M3U file to trigger a local buffer overflow in ALLPlayer 5.6.2 via a long UNICODE string. The PoC demonstrates a crash with an access violation, indicating potential for arbitrary code execution.

This Metasploit module exploits a stack-based buffer overflow in ALLPlayer 5.8.1 via a crafted .M3U file, achieving remote code execution by leveraging a long string in a playlist entry. It uses a combination of ROP gadgets and alphanumeric encoding to bypass bad characters and execute the payload.