CVEs-PoC/2010/CVE-2010-10017.md at 2ef066380cb36dba2e454190ca2349fcff6ca2df

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-24 15:54:10 +02:00

Files

T

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

Description

WM Downloader version 3.1.2.2 is vulnerable to a buffer overflow when processing a specially crafted .m3u playlist file. The application fails to properly validate input length, allowing an attacker to overwrite structured exception handler (SEH) records and execute arbitrary code. Exploitation occurs locally when a user opens the malicious file, and the payload executes with the privileges of the current user.

POC

Reference

https://www.exploit-db.com/exploits/14497
https://www.exploit-db.com/exploits/16642
https://www.vulncheck.com/advisories/wm-downloader-buffer-overflow-via-malformed-m3u-file

Github

https://github.com/ARPSyndicate/cve-scores

1.2 KiB Raw Blame History

CVE-2010-10017

Description

POC

Reference

Github

1.2 KiB

Raw Blame History