Vulnerabilities > CVE-2007-3068 - Unspecified vulnerability in DVD X Studios DVD X Player 4.1
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Stack-based buffer overflow in DVD X Player 4.1 Professional allows remote attackers to execute arbitrary code via a PLF playlist containing a long filename.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
description DVD X Player 5.5 Pro (SEH DEP + ASLR Bypass) Exploit. CVE-2007-3068. Local exploit for windows platform id EDB-ID:17803 last seen 2016-02-02 modified 2011-09-08 published 2011-09-08 reporter Rew source https://www.exploit-db.com/download/17803/ title DVD X Player 5.5 Pro SEH DEP + ASLR Bypass Exploit description DVD X Player 4.1 Professional .PLF file Buffer Overflow Exploit. CVE-2007-3068. Local exploit for windows platform file exploits/windows/local/4024.rb id EDB-ID:4024 last seen 2016-01-31 modified 2007-06-02 platform windows port published 2007-06-02 reporter n00b source https://www.exploit-db.com/download/4024/ title DVD X Player 4.1 Professional .PLF file Buffer Overflow Exploit type local description DVD X Player 5.5 .plf PlayList Buffer Overflow. CVE-2007-3068. Local exploit for windows platform id EDB-ID:17770 last seen 2016-02-02 modified 2011-09-01 published 2011-09-01 reporter metasploit source https://www.exploit-db.com/download/17770/ title DVD X Player 5.5 - .plf PlayList Buffer Overflow description DVD X Player 5.5 Pro SEH Overwrite. CVE-2007-3068. Local exploit for windows platform id EDB-ID:17788 last seen 2016-02-02 modified 2011-09-06 published 2011-09-06 reporter blake source https://www.exploit-db.com/download/17788/ title DVD X Player 5.5 Pro SEH Overwrite
Metasploit
| description | This module exploits a stack-based buffer overflow on DVD X Player 5.5 Pro and Standard. By supplying a long string of data in a plf file (playlist), the MediaPlayerCtrl.dll component will attempt to extract a filename out of the string, and then copy it on the stack without any proper bounds checking, which causes a buffer overflow, and results in arbitrary code execution under the context of the user. This module has been designed to target common Windows systems such as: Windows XP SP2/SP3, Windows Vista, and Windows 7. |
| id | MSF:EXPLOIT/WINDOWS/FILEFORMAT/DVDX_PLF_BOF |
| last seen | 2020-06-14 |
| modified | 2017-09-22 |
| published | 2011-09-01 |
| references | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3068 |
| reporter | Rapid7 |
| source | https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/fileformat/dvdx_plf_bof.rb |
| title | DVD X Player 5.5 .plf PlayList Buffer Overflow |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/104726/dvdx_plf_bof.rb.txt |
| id | PACKETSTORM:104726 |
| last seen | 2016-12-05 |
| published | 2011-09-02 |
| reporter | n00b |
| source | https://packetstormsecurity.com/files/104726/DVD-X-Player-5.5-.plf-PlayList-Buffer-Overflow.html |
| title | DVD X Player 5.5 .plf PlayList Buffer Overflow |
References
- http://osvdb.org/36956
- http://osvdb.org/36956
- http://secunia.com/advisories/25508
- http://secunia.com/advisories/25508
- http://www.securityfocus.com/bid/24278
- http://www.securityfocus.com/bid/24278
- http://www.vupen.com/english/advisories/2007/2043
- http://www.vupen.com/english/advisories/2007/2043
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34690
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34690
- https://www.exploit-db.com/exploits/4024
- https://www.exploit-db.com/exploits/4024