Vulnerability Development mailing list archives

Re: Microsoft Media Player .ASX parser buffer overflow (win98, others?)

From: "Teicher, Mark" <mark.teicher () NETWORKICE COM>
Date: Wed, 15 Nov 2000 08:44:33 -0800

Has anyone tried wrapping arbitrary code in a Windows Media player skin..?

/m

At 11:05 AM 11/15/00 +0200, Pauli Ojanpera wrote:

It bugs as hell.

A valid ASX file to be opened in Microsoft Media Player 6.4x:

<ASX version = "3.0">
<Entry>
 <Ref href="anasf.asf">
</Entry>
</ASX>

Make any keyword longer than 21000 characters and you've got it.
Not too easy to exploit though.. prove your skills ;)
_________________________________________________________________________
Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com.

Share information about yourself, create your own public profile at
http://profiles.msn.com.

Current thread:

Microsoft Media Player .ASX parser buffer overflow (win98, others?) Pauli Ojanpera (Nov 16)
- Re: Microsoft Media Player .ASX parser buffer overflow (win98, others?) Teicher, Mark (Nov 16)