[MPlayer-dev-eng] Fwd: [MPlayer-users] Mplayer exploit?!
Arpi
arpi at thot.banki.hu
Tue Jan 14 17:58:10 CET 2003
Hi,
> > > > Exploit Available:
> > > > Yes, attached below.
> > >
> > > hey, you forget to forward the expliot ;-)))
> >
> > http://online.securityfocus.com/archive/1/306476
>
> Opps, this one is better (got the exploit inlined):
>
> http://marc.theaimsgroup.com/?l=bugtraq&m=104248753831504&w=2
and does it work for anyone?
i've tried both 0.59s and the 0.59r from slackware 8.0 (the src has adress
for that version), no crash or owning (just played noise)
also the method they describe to find the address doesn't work, gdb fails
with Cannot access memory at address 0xbffffffc...
A'rpi / Astral & ESP-team
--
Developer of MPlayer, the Movie Player for Linux - http://www.MPlayerHQ.hu
More information about the MPlayer-dev-eng
mailing list