CVE-2017-17932

CRITICAL

ALLPlayer ALLMediaServer <= 0.95 - Remote Code Execution via TCP Port 888 Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2017-17932. PoCs published by Mario Kartone Ciccarelli, Anurag Srivastava, Aloyce J. Makalanga, including Metasploit module exploits/windows/misc/allmediaserver_bof.

AI-analyzed exploit summary This exploit leverages a stack buffer overflow in ALLMediaServer 0.95 to achieve remote code execution via a ROP chain and shellcode injection. The payload is delivered over a network socket to trigger the vulnerability.

Description

A buffer overflow vulnerability exists in MediaServer.exe in ALLPlayer ALLMediaServer 0.95 and earlier that could allow remote attackers to execute arbitrary code and/or cause denial of service on the victim machine/computer via a long string to TCP port 888.

Exploits (4)

exploitdb WORKING POC
by Mario Kartone Ciccarelli · pythonremotewindows
https://www.exploit-db.com/exploits/43523

This exploit leverages a stack buffer overflow in ALLMediaServer 0.95 to achieve remote code execution via a ROP chain and shellcode injection. The payload is delivered over a network socket to trigger the vulnerability.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: ALLMediaServer 0.95
No auth needed
Prerequisites: Network access to the target · Target running ALLMediaServer 0.95
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC
by Anurag Srivastava · rubyremotewindows
https://www.exploit-db.com/exploits/43407

This Metasploit module exploits a stack buffer overflow in ALLMediaServer 0.95 via a malformed HTTP request. It leverages SEH overwrites and a hardcoded return address to achieve remote code execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: ALLMediaServer 0.95
No auth needed
Prerequisites: Network access to the target server · ALLMediaServer 0.95 running on Windows XP SP3 or Windows 7 SP1
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC
by Aloyce J. Makalanga · pythondoswindows
https://www.exploit-db.com/exploits/43406

This exploit demonstrates a buffer overflow vulnerability in ALLPlayer ALLMediaServer 0.95 and earlier by sending a long string to TCP port 888, potentially leading to remote code execution or denial of service.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: ALLPlayer ALLMediaServer 0.95 and earlier
No auth needed
Prerequisites: Network access to the target server · Target server running ALLMediaServer on port 888
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/misc/allmediaserver_bof.rb

This Metasploit module exploits a stack buffer overflow in ALLMediaServer 0.8 via a crafted HTTP request, leveraging SEH overwrites and ROP chains for DEP bypass on Windows XP, while using a simpler approach for Windows 7 due to reliability issues.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: ALLMediaServer 0.8
No auth needed
Prerequisites: Network access to the target server on port 888 · Target running ALLMediaServer 0.8 on Windows XP SP3 or Windows 7 SP1
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/43523/
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/43407/
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/43406/

Scores

CVSS v3 9.8
EPSS 0.5332
EPSS Percentile 98.8%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-119
Status published
Products (1)
allmediaserver/allmediaserver < 0.95
Published Dec 28, 2017
Tracked Since Feb 18, 2026