BPM STUDIO PRO 4.2 DOS DEVICE PATH VULNERABILITY
From: ][-][UNTER (lopht@tutopia.com)Date: 02/27/02
- Previous message: 3APA3A: "LBYTE&SECURITY.NNOV: Buffer overflows in Worldgroup"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "][-][UNTER" <lopht@tutopia.com> To: <bugtraq@securityfocus.com> Date: Wed, 27 Feb 2002 07:00:39 -0300
Hi Bugtraq !!
BPM STUDIO PRO 4.2 is one of the most famous mp3 mixer and player and it has
an http server implementation for manage the player via the web browser.
Unfortunatly, when you perform a simple http request like:
http://BPM-HOST/con/con
you can crash instantly non-patched Win9x host with a simple Blue Screen !!
HTTP daemon is not activated by default
bye bye
-----------------------------------------------
][-][UNTER
Infobyte Security Research Crew
Buenos Aires, Argentina
-----------------------------------------------
- Previous message: 3APA3A: "LBYTE&SECURITY.NNOV: Buffer overflows in Worldgroup"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
